Overview

overview

3

Static

static

3

44afc415e8...18.pdf

windows7-x64

1

44afc415e8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2024, 05:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44afc415e8a81eec4a9ab2e9b3747317_JaffaCakes118.pdf

  • Size

    117KB

  • MD5

    44afc415e8a81eec4a9ab2e9b3747317

  • SHA1

    cfda05ad674857fdd4174fe99e8c06cd28414bf2

  • SHA256

    83dcabffb17f8267c4982cc28750c8f09d6094d126b3b85b5dd861527ed77194

  • SHA512

    b36fe175158984acf4adc4417281a96194139013fb159996503f2c2f329d0aa52ee43d44ebe3c5ac6abead52676d3f95970a057617b537cd3d10932281a3acc0

  • SSDEEP

    3072:UFypXIFhgVCMjLdjHGh8f1Mbq1xaGhpg7X04h5v+eY:MM47OTDfcx/2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\44afc415e8a81eec4a9ab2e9b3747317_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9c1afc3ef39853654f2eeb8fe49ee310

    SHA1

    cce64ea89e129813381a1f41f3985eeeef514d2a

    SHA256

    8de42842c367641ca6cadaf88a7f9f2f630512bfcda3dc767e1c4090bee58233

    SHA512

    f4a0fe1cb6f6b87899c8d572fbf9758f31021dde4d75338e5de9af3e98121cbb191ca8868ce62abe24b39b7019e8ed605da402fc716482092729fdd7707dc322

    Download Submit