Overview

overview

3

Static

static

3

3c2c265c07...18.pdf

windows7-x64

1

3c2c265c07...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/05/2024, 18:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3c2c265c079299c747e9d55d75b84223_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    3c2c265c079299c747e9d55d75b84223

  • SHA1

    3ced1d84fe73625c6853051b9be3110f2f2b724f

  • SHA256

    94d7e759cccd1da114de56421c5ee9a40866a1b79b5796893702691cd13fbd37

  • SHA512

    49fa0e5974d7d2aa11f154c74009a38e16c8a27fe7fdd31646977e40cb07805b9721663a07b7e22cf80bfb64428e4be5a274051b5bedac4e3cde8ce104f1c666

  • SSDEEP

    768:RgGzpDkpYkbe6Y0ZqHKx5FwTcx68wHKtihbNcpmeHHHHuGHHHHOZDgdWQi0n2Qsi:iGF4pYoeAzwHGwpcp4ZDgdri02CimZJp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3c2c265c079299c747e9d55d75b84223_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e9e3d10a81f36f70a51157f7994b370a

    SHA1

    4b659f12fc1a9014fde2576c273ad7b8c3b32658

    SHA256

    231290c5dab7ad0eaf2f500f6cb65b4ff2eee91357ab7b3c43078ca3ad49ac40

    SHA512

    32668afc4845f658d8cad4aa48f08c13c6884e1c9d388bf98a66d131afae75485dbfd82a0d190a49ebbb29bd4ef498fdf2bff26b9ff92125f6e05cc7dc580206

    Download Submit