Overview

overview

3

Static

static

3

5d057237e5...18.pdf

windows7-x64

1

5d057237e5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 03:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5d057237e55530f78913f0b43dc6fe98_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    5d057237e55530f78913f0b43dc6fe98

  • SHA1

    382890963fc9064b1ee86abebb6e4babaa5cb6be

  • SHA256

    31884a1fb935f62c4a6f53d9869266cae73a3575efe7ac88c7df30d6bc655c66

  • SHA512

    f6dc574fc56b15835dbb28a5b447012c73de8c54a14f22e45e96f05c4a3754c8cabcfe04cf9fffd7d9bdbfa5f897de8be789f7b6b9b28be9346058867213a6d1

  • SSDEEP

    3072:62irbxzGAFYDMxud7fKg3dXVmbOn5uS6KjnHl10HAKUoIVO0UZV06CkwSCQFVSz:62MKlWQ7Sg3d4bOLF14AuhZVhC5SY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5d057237e55530f78913f0b43dc6fe98_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    087761aa72dcc7e20ddd2516fd893fc4

    SHA1

    d25a831c0f15b4c02c5ae811fe32b52d08ef184a

    SHA256

    7aa5eea2e1db4515da7434d3f63630847e596222dc5832f282a336fd72993321

    SHA512

    e7165aacfd9dea3d826699c446d75a1f14159d8662e090e19d63a5244116798acc630e6ea5147b9814a3360bb581f35db2decc7cab7df5f48a5ea74e6ed897ac

    Download Submit