Overview

overview

3

Static

static

3

46312cca3d...18.pdf

windows7-x64

1

46312cca3d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 12:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    46312cca3dfae06e95cfa98d14c04eba_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    46312cca3dfae06e95cfa98d14c04eba

  • SHA1

    d2c4880c4b4c55b17732948df62845ae0e24d7a4

  • SHA256

    a34358f8e2617d05e858d3dd4a54db76f3d2da6bb371d2577945ea9743fc4a87

  • SHA512

    a3c712c0832ee5c259d9c303b50b64713f971afbdd6c02655b3f05a84d281f233aa4df4c5c9ce83ea1bf620c1ccf2eef8fe76e3c4019d1c7624c6f20fb0ad6e6

  • SSDEEP

    768:JgGzpD0psP8fwBVXhBuIQyE8NVZ2M4SbdBqqIgM4Gp5HbZkw6o6q3:qGF4pssEzEM4ovIgM4WB9ko6q3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\46312cca3dfae06e95cfa98d14c04eba_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a98890492320aba87786de216117822

    SHA1

    39f434d4b802bb40cbeba6f6333c765f6dc1b17d

    SHA256

    b92daaee25d868bf3af4bcd0347c2809e524ae579ea4ac8f615c1eecebb8ed83

    SHA512

    cad78e2b3deafb4a88378801e642d3ffebfc05843071b66730c73349e2636c100bc456e3ee2b4816f37676d40ceed23391cdecf4c7b3c7faa02401a593ef3e2e

    Download Submit