Overview

overview

3

Static

static

3

38cba612c8...18.pdf

windows7-x64

1

38cba612c8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12-05-2024 06:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38cba612c8612e70890a995ac715f991_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    38cba612c8612e70890a995ac715f991

  • SHA1

    dc4288497076b2b5bf5411831e6ed3d2b1898c6e

  • SHA256

    b0d37960302321e6361fd9bd8ecd7a937c390f1bec2dc8a4a079b516446da386

  • SHA512

    94b0d84b209ecc344269662d5b135702386d52067bd3572967870b20e57883a0c4849587ee6ec6fc91ecfa7a7a6738b4fda1fabce50987a848a9e3deb8127cd6

  • SSDEEP

    1536:cGFYRjr+P5gKYHoQCc34y4rWcOd+FxAI6:5FYg7YHoQfIy4qd4xi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38cba612c8612e70890a995ac715f991_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5dd46250e2f2deb2088ef5c3f226b0dc

    SHA1

    cfa5ffff5dbecddb4809988d7baa5cadcd580065

    SHA256

    203f70020f334175da3d4e19de2dbd51ccaa5aa217bb0fd1430a62e9d3ce7cd5

    SHA512

    1a028f7ef09951239e5a786122f2073706cc09790199b2d76a378fc179f5fc058ef73921d263403ce836757d5b98c37cc193300f8d28c288e3e16cd8465ac9df

    Download Submit