Overview

overview

3

Static

static

3

3dc8aa0648...18.pdf

windows7-x64

1

3dc8aa0648...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/05/2024, 03:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3dc8aa0648e1b7e70053bde7fae12772_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    3dc8aa0648e1b7e70053bde7fae12772

  • SHA1

    4cae89d2ed54e8c27acd7d97420c34acdcf4e36d

  • SHA256

    f333f7c86b124bc4e181f222c81c7727b6f2864d82c53f0175a48abeaac749d6

  • SHA512

    5a2002187f54ddabe6334a10c2c6eeb909768cf3d725c050e7543895467c607598bfc1e50181d8bfb2ba43b76719c72b7dbfedef58b557253bfd2771cf473766

  • SSDEEP

    768:ggGzpDA+XWOQLoZBxQEyzobJup7oH6Xn+HiHzShc13hYf6ZZLdEld6VaO:tGFUKuiaXnauzShwBZZLmld6VaO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3dc8aa0648e1b7e70053bde7fae12772_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3e97757bf36833c73480b9e7862bda0c

    SHA1

    e6b37cf40dc807db50f1071648f1c145cabdd50c

    SHA256

    4fb2ed008ae9ef6dc5d0afdd60164a1713b92bb861779f85f15f43efd5e935f8

    SHA512

    048482e22fb9dde746b1194194210d8995b21e2b24e76ee41b30410be5f56632cdb238d6b640e5720aba0af68898f8249ce5b3e4227b2ea98967a1fae07e2afa

    Download Submit