Overview

overview

3

Static

static

3

417317b9e4...18.pdf

windows7-x64

1

417317b9e4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    14/05/2024, 12:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    417317b9e43fcec5d0d9b6950eaa1839_JaffaCakes118.pdf

  • Size

    44KB

  • MD5

    417317b9e43fcec5d0d9b6950eaa1839

  • SHA1

    2f9b25bf3d1d0f8755a2e966c1d1ce12e905f49f

  • SHA256

    64e981938c4f7e0b2a06efda67a7408554d5933e7623b631ed74cf6017f38b78

  • SHA512

    00b09dfcca98df293308a5b4694517d7d4d7f0d263fa2c65c68922441194971fa878be77278a3b2735964ef0449ede8e5080b96875b492b2db29c1d261d43407

  • SSDEEP

    768:zgGzpDjrcKZW+ZW6lEldssnNeltxkcfOJGnz7NypSpNb9Bi+jgzo4d:MGFfKBcfbn/NzpNBQ+Mzo4d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\417317b9e43fcec5d0d9b6950eaa1839_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    70ac476b061558312385e4c63bc54b95

    SHA1

    758fe086271c1f99607c91ffb4685bb6e31169b6

    SHA256

    08ee0cd4050098135e1914749558c07b8dc59006480f364088cd94e382a8b2b5

    SHA512

    f008e82ed599c0d65f3952b6401d08b4b0489f1155d4a6913919e13384de24301a7c765230a50f1956f1cb2e0fdaf4018eee3027849927c3f8402f7e2ea8e4de

    Download Submit