Overview

overview

3

Static

static

3

449d8cb70e...18.pdf

windows7-x64

1

449d8cb70e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 04:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    449d8cb70ee31613c1b23de2b75508f2_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    449d8cb70ee31613c1b23de2b75508f2

  • SHA1

    a057cc0a40feb5d809a68f3c1040b1f93f7970d3

  • SHA256

    68c1c71dbca161d90a7423674561f8df9070d165f6078bcfbc1d6166091e0ab1

  • SHA512

    5d14133f6d0746d2aa5de3756da5b5999737733c6f762d399f7dc4709b6a18d413160dd034dbe82a9a75c949b50e08d0d0e63a60a1e780f8141c35e400348ff3

  • SSDEEP

    768:z5gGzpD73az4O/kq/2YKmw0kES0WkODPAgHmNjR6YlE97JDmUO/X:uGF/zGPadHmlRlEhJDmtX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\449d8cb70ee31613c1b23de2b75508f2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    57bb50f2d7e36526d42879735d7a8b92

    SHA1

    f64cfba1c688008fa71790f3918bf0f7c91fc816

    SHA256

    4fdfba1d6578d4646bc58f19b523c6875db1f6a67b05fbae3855ed0eb730f44a

    SHA512

    f73b4f2a6739c67554cab3de02753bacd2b199bcfe66e032243e074f3f6fc860a6b32c4709a2fc120d35eaeb99e7a58499fe7aceb657e12fdf52ab7acb91089a

    Download Submit