Overview

overview

3

Static

static

3

3508d7d2f4...18.pdf

windows7-x64

1

3508d7d2f4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 14:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3508d7d2f4ac1d1e8711f0688cd0106b_JaffaCakes118.pdf

  • Size

    44KB

  • MD5

    3508d7d2f4ac1d1e8711f0688cd0106b

  • SHA1

    1a4c69a0eb9625ec985506659f54331f2d2874c4

  • SHA256

    ea7d318c6f9a0007bab0fd590eaba0f84522adf6ad03de244b07b07c1a1b00d8

  • SHA512

    bad3f7568f256a3f12581e5a35ef12d2705bc67eb64c76ef3f5c0e0bd1571dd7009239752ecb3381e6891b83ed4466f71aa5f6cb46012a5d1eeb9fb89831fcb3

  • SSDEEP

    768:cxiiC6HIFmYEFlBRSXHP3HkYyB3F1Xo9tKHqKqVhbomgGza+8XWnwHBexV5cpAQF:eiN6HzRDBRSXHP3HkYyB3F149tKHqKqy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3508d7d2f4ac1d1e8711f0688cd0106b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b417d6c7a69df245b3ca939bc436f05b

    SHA1

    488a9346f9f92ca330d8c05e6eddb3ad17eac830

    SHA256

    1b3b218b82ff092e953f06ac20dc90397a5472fccdb430778815ed375ff9d38a

    SHA512

    c4095657090f74406b9689d584097783dc5835efcc07f58f5e8fce09a1134ff6e8b2d8e5ff1794999b699fb058e08a322745e0350559673c2cfa18d4da545b72

    Download Submit