Overview

overview

3

Static

static

3

37babe403c...18.pdf

windows7-x64

1

37babe403c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12/05/2024, 02:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    37babe403cf398cbbe0caf99aeee80f3_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    37babe403cf398cbbe0caf99aeee80f3

  • SHA1

    a51524ced370ea781e8a5e6b6e5c354f29c59083

  • SHA256

    4a8613383034774d9f40243171b1771ad4bf6a3c74f8abe5a8e1f5eec8928d03

  • SHA512

    197503ee5dba438cdb225a130b3e31198c981e3806bbd644d9cf500d0c118df2a5cf663a66895511c1a067ad8d807e4b898bded73e9f0f08460d7d7cbfe0c02f

  • SSDEEP

    768:6XuMZmwgCLWarBB17ut2ZucHQ1hBkh4/3WvKBdMpko0DANa:6XFZmGWSUERHmX+K3WviY0DANa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\37babe403cf398cbbe0caf99aeee80f3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    94dd35463f861c5eac05239fe60e1cb6

    SHA1

    bb1a5c484cbac9de99f5dd63f90efe7256584483

    SHA256

    ad58f06c6ff45b664b11eed7531b3f2a564f336cbb0c5aeceb620cd3e00e2c91

    SHA512

    72e22f1b6441dbc0958e09b72afe15fad2c2bc0ffc1957a8ffa8825d6716a6f02f36cfe43998b6f0a9cbb37f42c50e82616ca7715b695d074ea91e959e21f664

    Download Submit