Overview

overview

3

Static

static

3

3f5ac1127d...18.pdf

windows7-x64

1

3f5ac1127d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/05/2024, 11:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3f5ac1127de06959012338dab888840d_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    3f5ac1127de06959012338dab888840d

  • SHA1

    69900205356a1282d24fdc918b46378ce7fa178b

  • SHA256

    e077a709ed2424b00f10b0b9a3d1672118856bf1fbc5ff32df18bf88da5eb875

  • SHA512

    970b86b3632c4ee6b9e8083b9a9b51eafa3a21a4a0d523ab30e23436bfa71b0f97533f7abea1d214e4ed11c2a04d3119ef0a8a6c225a3057db0a376d60442ae4

  • SSDEEP

    768:bJiQGzPXour39XcDlO5tQUBvh5HTbxf7VBRzr:1JGzPXR32DldUBThjRzr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3f5ac1127de06959012338dab888840d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    072cfdd55c271ff5e4dc5af836ceef96

    SHA1

    7b6a513bf6b2b37fb7fbab6b9e20a36e56339138

    SHA256

    bb3fd18c155037101dbc1017383fbf4b3e74629e0f417f76bdb641fa84348c6e

    SHA512

    b39475196a8a4e9b8b8498faaacd47e3b42ed7b6d919965db71f1d0ec6e062b28b235a9a5f5340a1d21ac67e89ea0bd806d393af9bd7f0fc77f94c6048a94adb

    Download Submit