Overview

overview

3

Static

static

3

339f31f3e4...18.pdf

windows7-x64

1

339f31f3e4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 08:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    339f31f3e4f80dc0a8cb5f6366456d89_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    339f31f3e4f80dc0a8cb5f6366456d89

  • SHA1

    a2d09200c094025de0b7e375eec4cd9f6c7b791e

  • SHA256

    94239a8c8495c9a5052b7944a65b3f0ce6e640e7bf90e4768f4f0359565820e5

  • SHA512

    d7edaca24010899ee379f7682aa6fc14e2fab5186399e8b2da992b25d69754df9e8f5f59d5c961b31cd6af89bf81ff6c1b0dde146bfe46ae609a8a657f25bb59

  • SSDEEP

    768:bgGzpD4pNe4VRyPOdL0fqeXlHXMcW1VGpAjYcN/4vuCMA9q6p8rLalV:kGFMp+XpXY4pgvnA9NK/alV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\339f31f3e4f80dc0a8cb5f6366456d89_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eb386f9c7fdf1774744360e24c4ca14e

    SHA1

    ec212fb58f17c8dac7ca0880e9c6134fca8b273d

    SHA256

    be8c953a66b0f872e60ce796d2d8a05186b6ace94c381437508b49fb94c34e50

    SHA512

    55ab00ad606d3255ddddd3ebea9364c41b06ca9826b09fda9ee4d6daf4c2d8d1fac5ae243eea123ff67b45ed6b56ab5380a9199466e68291e5cc4e9bb04d326e

    Download Submit