Overview

overview

6

Static

static

6

4c657ed33d...18.pdf

windows7-x64

1

4c657ed33d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 18:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4c657ed33dcc509db0f39ba8ef5e4294_JaffaCakes118.pdf

  • Size

    12KB

  • MD5

    4c657ed33dcc509db0f39ba8ef5e4294

  • SHA1

    d07c81622cd7a0722987473b1c86f36658acf3c8

  • SHA256

    67a7b2367a91b875c2e99c25b1598cc83db08401012b92e57b6cf2b66b2b27e3

  • SHA512

    86fafe09014256b82c85eadb72cd8ec7f75072f4f9b0c6f29b63f6877eec88a82740a4789f46a877f14bf8bcc256b210cea220fca556a670f5b95b05c32bd4d3

  • SSDEEP

    384:WJHwI8Zn8GBxGdOJ5foHi7JqG6fOYdUNZg9C:WJHF4vBeG5gCV/6fOYqN+C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4c657ed33dcc509db0f39ba8ef5e4294_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a609f1d150578e28fecb5898ba98abb

    SHA1

    930bf38e2dd2687420b5351a390d301bf8f19574

    SHA256

    87e31f0186fce22344e45d685de70218fe13b5a1474c2cde49ae499e4bda7988

    SHA512

    632f33e68717bd801c81d4c74ed1e7896c58c7fc4bf0056b4c933f17bd7c056fa9dfe5cc9743093c8626ab0e3f9a50449fbd62dcb14b743af68956e04851c757

    Download Submit