Overview

overview

3

Static

static

3

3450284a42...18.pdf

windows7-x64

1

3450284a42...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 11:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3450284a421695eedaca480186cf7870_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    3450284a421695eedaca480186cf7870

  • SHA1

    ebc961574c7fed139128b2ce0d65ba27f209308d

  • SHA256

    7686bb8cca892f9d13e9a1ec1b07b239a72e029bc77ee253be36cf09b88138b1

  • SHA512

    9c83b4941c8540e249b4a42cd4d65b364c86a443041742dfdaef90532eb682a1c82ada9fd3720a818b2f9c6544deee1a7e67061cd5eb186348dea20c284b6fb8

  • SSDEEP

    768:dgGzpDCLw7ja/o4Q0PcaXtjQfvkeYggpa+6kDDtuDAPI5wSTOaWrGstEHz:eGF+gzEa+/HtAAPgT4rGstEHz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3450284a421695eedaca480186cf7870_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    37d57f04463fcfc40ebd9e8e7531ecc1

    SHA1

    78f3347b5be072a38abd6888e5f51fc88d0fd661

    SHA256

    f08d9d77d3c18ae6f57080d9370dc4256e0fdb0c78262f5de9e9dfb42ddc0b63

    SHA512

    88b401e200960a23a06286f3d44747c38b0699c84af636b335183c732718515f4a18cca8fe3899d6ca33354f51dd1567fd0aacf0cd389e31cefa28c26c3c8eb5

    Download Submit