Overview

overview

6

Static

static

6

4be45383a3...18.pdf

windows7-x64

1

4be45383a3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 15:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4be45383a37a101a1558368bf58d146a_JaffaCakes118.pdf

  • Size

    8KB

  • MD5

    4be45383a37a101a1558368bf58d146a

  • SHA1

    fb0a924ac4713bb8d913ca37fd72264251b920a5

  • SHA256

    892352d3c21549bd4dd70d7f6150bf7b4b9a28275cd1ae6e421ed406faa8e25f

  • SHA512

    9609e66c5f9337372263d6601d73b9375532d6405e7068bc254e7bafebc3e1865734e2c19f44fe12a4b71e81e383d0bc557746a2c1d57418f8e26c178661c84c

  • SSDEEP

    192:WjlsB8S6UJz8MzhNUd8vFTuweCDmPSZhD9xnL:WjlsB8S6UJz8KzUd80KmKd9xnL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4be45383a37a101a1558368bf58d146a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0417149cb005ef9356dc87fdcd13effe

    SHA1

    084f27efc893f7b29e7019a8ff1bb2a839d63d16

    SHA256

    2b7dc8a087ccbc114426b44073fe0969fe76cf965bf195973341b8959cbceaf1

    SHA512

    8579403ac0f276ed1b09199c923001a58261307cc2dacd2401c505785e62b9d228ee012d2484672314fb08f1b462cc64d5aae125714ba9aaf751e71a7487fd6d

    Download Submit