Overview

overview

3

Static

static

3

49630a0d38...18.pdf

windows7-x64

1

49630a0d38...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 04:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49630a0d38c5fb09e3c278783a4748eb_JaffaCakes118.pdf

  • Size

    186KB

  • MD5

    49630a0d38c5fb09e3c278783a4748eb

  • SHA1

    7b1a43c80eab0a3af87741f2b52b1869d3e02011

  • SHA256

    d2f5fe97ba2dbbb5892b8345a17eafdb6c5a013ff91adf1803775dc4f01af3d2

  • SHA512

    a15c3a72bbaefd9d9f9925be9eb056dacd785769e8e53a5226197554d139eca6600aa8dad09b6869a4d1aeda414b6df9d1daa55f5a2bc05cfd354fc6b89f6ec9

  • SSDEEP

    3072:R2irbxzGAFYDMxud7fKg3dXVmbOn5uk6KjnyCtd0caiuM3qhjtSy:R2MKlWQ7Sg3d4bOJRL77nqz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\49630a0d38c5fb09e3c278783a4748eb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2132

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bd194d868210dea86297c15ccc0c9740

    SHA1

    611f8129a0c574f38d980a16830cbf7fb63bf291

    SHA256

    57e7cd6701b9fb88781cd072074fb70c0a093e8c152d09016cb2d0eb1b1c740b

    SHA512

    33e9e00b1f1034003ab67bf678f111837ebcd2810279c31859aa409209901ca9fdf5f5a41f6db264367104b65ba915148d5922009091159cc06bb2dcc83de681

    Download Submit