Overview

overview

3

Static

static

3

3695c9410c...18.pdf

windows7-x64

1

3695c9410c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 21:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3695c9410c9b2ad2ed87daefaa117f90_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    3695c9410c9b2ad2ed87daefaa117f90

  • SHA1

    485b09352e02008be7a222ee8fbfb3ca15c7f065

  • SHA256

    9f00b4d5ba33fe4dbf3b77ca093fc1d28f896cb4d8c084825a4443f985423947

  • SHA512

    a72ba4d8cb33b7526d9a3b722e199c1f52624b77df40aca46b432d36c294e63e1fe52a467e86906ce3581ec621c2a9d3e0379825eda91c234006316136e163f7

  • SSDEEP

    768:NgGzpDVMU0fHDENwk2jpH/GRN4bqfNWpidXvuJjjrl3qw8WdP7Rt1lnOEkfoQRh:uGFpQGjwKuidvuhjp3qw8W97P11OVfom

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3695c9410c9b2ad2ed87daefaa117f90_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    21017be006821db2b9d73a9d374633b2

    SHA1

    2e005ce4a3ae5b4a57cbec94550db2f30bbc5207

    SHA256

    42d622ae6b91b1ce38dcecc8dd03b3aab350560553e841d5f48424335270f74c

    SHA512

    e02ff4ae55e07f8feb9b0994ce7ddba3441437ce7d0877a1db52272cdcde742d2602e471343ff5559c6dd5569aa0a1bad62ea22d9b9cdce14f364fb8c63969cc

    Download Submit