Overview

overview

3

Static

static

3

328ffca562...18.pdf

windows7-x64

1

328ffca562...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 03:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    328ffca5623402631de1330b406d4dd0_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    328ffca5623402631de1330b406d4dd0

  • SHA1

    562cc2497e94c8789cd9cc216e27192578218c09

  • SHA256

    f69f69544cd041df8571ddf7117571893ee55a9b0206d8378a197b826f17cccc

  • SHA512

    54fb31fec9d6b93cde08fe216108cd2b05f58aa55a8162bb647926c9189860bd0eed198df6ed09d33cef9a7a905f2b40c2e744d00ac1acd4a28a067dcadf5435

  • SSDEEP

    768:3XuMZmwgCLWarUxqVrCFdJXV3vHJ4a/z8agC3KHQg:3XFZmGWSSWCbLH3KHQg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\328ffca5623402631de1330b406d4dd0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d1480db017283e041d4adf679ff2bd2b

    SHA1

    7033d9279f7a8477311e79803ceb67940d18413d

    SHA256

    97784f5c67d29166995609ed6b2bf55bb1a3e2065b205a54ece22eb3f6a63480

    SHA512

    8aa2a57f6642c3a8cb05d1d393cddf972707b9018ac83567f3b0ce1c445073af8338c2b8613ff19ae9b344a617c68876a1c598183c21fe8fa05aba925216c50a

    Download Submit