Overview

overview

3

Static

static

3

34f967c84e...18.pdf

windows7-x64

1

34f967c84e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 14:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    34f967c84ed43a9be719efa55aae5050_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    34f967c84ed43a9be719efa55aae5050

  • SHA1

    52094cadac9d641bfc3dfc8c5556dcf58bb8376e

  • SHA256

    418d4c105cac0d2cf466a5789a30f287fc09510769a090c2f7b1139f0bbe8ec6

  • SHA512

    cf1f79ad56608658d536a9f9f1e3118d62550178f80ed50a4980d36766c6010c61d06317f66fbcbadf17b6b5f03e4057df55eca67b7aa7a75bb85f8e3245c966

  • SSDEEP

    768:1gGzpDyBVksi8cKrDlb/2BPTON18a1wN8tOu6KFk2jdooddgqHIf8G4TWG6+G:mGFmXZwa17tOu6QjdVdd6cTWG6+G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\34f967c84ed43a9be719efa55aae5050_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:624

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fb84e30bac2640dce5357bfde82b3561

    SHA1

    28c21455a300bb63368517e6fa4421cf82220b79

    SHA256

    4ef056f3bc353cc95650a57756904cdde35a112a1049100574a93c3614fc4008

    SHA512

    c9dae974d34394643ec49375987f68e3a2000c5ea609aa8b1d6ffb18909f08a736c28b231449fc0c21d80850e7a007424ca2655795ac31b940626aa2c8cea17e

    Download Submit