Overview

overview

3

Static

static

3

4e656e8d28...18.pdf

windows7-x64

1

4e656e8d28...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    17/05/2024, 04:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4e656e8d2897425de51c73aef5ff9c01_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    4e656e8d2897425de51c73aef5ff9c01

  • SHA1

    52cdf7dc98410fda2bd580621e7f9e7fa9cd06a8

  • SHA256

    a47e3c74daf9e9168e213c7e752e1e4982eeeb82e308ff3aa55a83f67a9c97a0

  • SHA512

    5bcb7eba196cdb4905dda6e9e053d0d73f91458cff8afa2c572ea68a96f95429fe6c02b825ea2de30c0cbffe5635324e881637dfa2c90368c9385d8ab273ee63

  • SSDEEP

    768:RXuMZmwgCLWarzE5HpxtUqp9WkKXZPiDZNpsmRO6rAfk7ooMcCjAWmBvrSKF:RXFZmGWS8jtUqp9WkKlQf7tW8rSKF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4e656e8d2897425de51c73aef5ff9c01_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6fecd1beb4d96f8fba31b09180062285

    SHA1

    494496cf4b1f9877ef5ab15c3131aa571de9e522

    SHA256

    43c9a458fc554d4e6c8688e17a59c592b7707788a6cebdfaf7b2a157e5d2901b

    SHA512

    3253fbe38edaa7cff5de6149056b62a5365fd15f3c997994382ff0f33759884457b28e475c797bf99610ec53993456e3dace10a1c90fe61385ff4ebf414d9645

    Download Submit