Overview

overview

3

Static

static

3

499d56ab4b...18.pdf

windows7-x64

1

499d56ab4b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/05/2024, 05:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    499d56ab4b75b0cb6c2c7d70a83035c3_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    499d56ab4b75b0cb6c2c7d70a83035c3

  • SHA1

    1d6eeaddc2a98e048fb9025b36e95f8581cdc8c3

  • SHA256

    e2df856e56937232ee09730568fe615d90063f2f84ae6c2655b99847364a0877

  • SHA512

    9c7fa1eabc08d456ba3bea0f206d312cb87289fb13e489996f3beeedc59f6536876f596d8669efe9d2bcfa2357baf9b97d04c645fcf29ffa54caa28bf441ce5e

  • SSDEEP

    768:1gGzpDyBVksi84+/6NsGm7M8ycEym7Zszeisshp/BJn50gZr192RhHmzDscxt+:mGFmq3JCLPfJ50gZ1srHmzD5xt+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\499d56ab4b75b0cb6c2c7d70a83035c3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e921748ad281e2112cb64709ee04551e

    SHA1

    11db854799923bb9e2c52f0a375f828a637ea54d

    SHA256

    9458c0d3555c6a5d1a5e9039a4912b345bc214e9c3dea1a81c149a671e4c1298

    SHA512

    771874bb5673e36018a1dfdd5a6acfb5d966b1b09634f0ce4cc922cedde822e01b44cc152bc24b0b0a72b1b74709626b4a92b52a1280967045b0d9fe9a8a9c1a

    Download Submit