Overview

overview

3

Static

static

3

3b7e6b4cdf...18.pdf

windows7-x64

1

3b7e6b4cdf...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12-05-2024 18:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3b7e6b4cdf744ac633600e14043943e0_JaffaCakes118.pdf

  • Size

    185KB

  • MD5

    3b7e6b4cdf744ac633600e14043943e0

  • SHA1

    cdf3d5c21f83a8f18bf4c43acb89246d2715c658

  • SHA256

    7d409b9d1f1b09e2bdec791e0e9b66ed3cbd168576a5e8efdc4df4cbc1e38325

  • SHA512

    97e1921334febe1a8470b188b9db5540970034620177708328ae64a6ed0ad7e4755b0e1be3a42c7c04b3a966c374eec9a4eec2b34832444f3f58e7859375d8dd

  • SSDEEP

    3072:p2irbxzGAFYDMxud7fKg3dXVmbOn5uq6KjnnQ6bgTqPHOwv9ZskuSL:p2MKlWQ7Sg3d4bOLQSHOCF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3b7e6b4cdf744ac633600e14043943e0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ddf5d6df8bce9edbaba7fb9d3f5cb22a

    SHA1

    ed6a4bb96fab61f61442324ffce7cf826886d145

    SHA256

    2faef0f5419a2b73d9594904b18c9f2ab652a9940ea4e5f57aca7ecc205d10ab

    SHA512

    000a4dcb63f85a22fb5653f6905dbb9fd054ed93dbd494e562c1d8b897881d3272367dd803b3e32375e86e6f6207f7e0d930b13a7716f635e28bb575b0f7544a

    Download Submit