Overview

overview

3

Static

static

3

3ce46c3333...18.pdf

windows7-x64

1

3ce46c3333...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13/05/2024, 22:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3ce46c33334f015a2a9b7470821b7cf1_JaffaCakes118.pdf

  • Size

    50KB

  • MD5

    3ce46c33334f015a2a9b7470821b7cf1

  • SHA1

    b9c6736c2bffe841d077f184a396eea18098be6f

  • SHA256

    a309bbfd4cd001ba3c04b12b77c36236f81201748fd5e235691268d462134598

  • SHA512

    ef70bc9e267e115c3e3e41eae2768118f5f36298033aae176d43433de6328a09ad0f3ca3b09d28ed6de8f08adb65ce9b24b60d9fd2bbca9e85297aac6f1bbb9d

  • SSDEEP

    1536:AhUSmph/oYgYzD+gXxniHXtm1/aUdjgq7tjfppsFUAXFZmGWSJr:AN8QVya6dcdmJn77tzQFNysJr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3ce46c33334f015a2a9b7470821b7cf1_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    de40c90ebf2968f9f126d241b269d7f6

    SHA1

    4364ac6e3f1f606cbc7cbfe7fa7b37210e7598d8

    SHA256

    00a368556b19928225264777d986455e93afe47bb5d60f73dc57d5908685e4cf

    SHA512

    5946a88eec1bf8c31fdd26eb47bb8bf310e2fa4fec8f633d319e90d35fbfc2414298b3fcb440ef3aa7ce4158dd6553bee4e1f04faf3a746c9f3485a98a3b37ce

    Download Submit