Overview

overview

3

Static

static

3

4450dbfe10...18.pdf

windows7-x64

1

4450dbfe10...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 03:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4450dbfe10be9d1042913c4d61157a2c_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    4450dbfe10be9d1042913c4d61157a2c

  • SHA1

    804fee6af49a20109f116b0f5e6231e53561668b

  • SHA256

    d2423664a2957e6effd0eb49759cadbc005ba42826473a1681048c6f94f478d0

  • SHA512

    36e2fd02dfbb2b5e2f1f2739bf89bef860efb5556344060f476d22fc65ef35a5632bbd8e7758e58e9ff0f6c613d7127b21a4df547d5cff383701491e25275b83

  • SSDEEP

    768:/cTREW6EFVLnztFn4oGW1eVlk1hJPEbVvOrHTQL/klplLIuhR9BBRcBE53XuMZmE:Ih7hnztFn4oclk1hJPEbVvWHT6/klplJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4450dbfe10be9d1042913c4d61157a2c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd474d4a7428c0078e4a97db94a3adfb

    SHA1

    bf2cb1609684bd35b292155bb183a2737e3692e1

    SHA256

    5116f6edc65c6b798cdcd993ad5188f620bf5287f7d8ebb3c00f7b8d8f1bfd8f

    SHA512

    65215eda54d9f6644a6204157a51965cd1fe827ab1af8c2fe5e1d9f66600665f5aba920ebbf2b1c27acf10415b9e85a33b2c7e29a5955ca09ebc269e35ca37a6

    Download Submit