Overview

overview

6

Static

static

6

4bc09d9723...18.pdf

windows7-x64

1

4bc09d9723...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 15:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4bc09d9723960dd8496b49cb2b1013cd_JaffaCakes118.pdf

  • Size

    13KB

  • MD5

    4bc09d9723960dd8496b49cb2b1013cd

  • SHA1

    ea246f0cc33c91c461b5c69d51d1c5081ae3df14

  • SHA256

    2d70071611c4afb54c585bdf9d761c859e094bb4b9ab5e7f489f4050ef574734

  • SHA512

    ceb8f0f92bdb37cb0da49459ed7726f73113f1fbfb899feca6d104936436b2d8b1400da4c62024f7b45a745550d1c4d0720dd0fcc489093a5df2923c1bff4800

  • SSDEEP

    384:L89bZAh6Svk4krufNyqlvrZkNfByIRFuR+eKo+m:L81EMqxwpFg+Kl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4bc09d9723960dd8496b49cb2b1013cd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e6a4b1525fb975f1bf0bc103e0e240a2

    SHA1

    8300e14fea47d23193daa570c25b2f45a82d8953

    SHA256

    f174a1139d7291130dc45e5a9aab0cb4006bb60560bb3b1d0e9051b085daecbd

    SHA512

    43af6739eea508ace244f7fe25fda8e9e2707c7ddb0c36d99abe21175db919629858608b11764bea32ec39fe539274bd15684a908772b049d2eb2ef786651d4c

    Download Submit