Overview

overview

3

Static

static

3

364964e205...18.pdf

windows7-x64

1

364964e205...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    364964e2058e6681418172a17cc7e4d6_JaffaCakes118.pdf

  • Size

    48KB

  • MD5

    364964e2058e6681418172a17cc7e4d6

  • SHA1

    3479320ec3d2b8a2ebb10e678a09cccf9046493d

  • SHA256

    f21b4bac72057e706ddf6030db35f7d1f2b54ee752bc1f6204fd5b3105118e34

  • SHA512

    fb39352e251ac84887679667888db37f1f30324e417785e122e74753dc08686f2fe78a029f3271df53d1752a6785df8463ee00e0b8baa83878f95dd422d7fb62

  • SSDEEP

    1536:wWlvtLRV0u4iLrCvoyInixKuqDqOhroXgdzj+IX6njHze7VZcjAeRLDnHgvcYYnn:wWlvtP0eioyIiUB+KEwB6y67aZG0OPHv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\364964e2058e6681418172a17cc7e4d6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fd7cb58c7080b082d80f80c00dda22d7

    SHA1

    6285687268caf59384c6102a96c871873691516d

    SHA256

    e080480bf17e25bc305df2614ab98664392e54a6698f4821772af776a90862d8

    SHA512

    8ba7c8e03b6308e41bb259c9a55473b2810033a95075a05609d96126222433ea466d50052604091d6cdfb69ad96f4f21248d912b6a374096947807ef8a4ddf28

    Download Submit