Overview

overview

3

Static

static

3

5e1616402b...18.pdf

windows7-x64

1

5e1616402b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 08:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e1616402b99b90e3a336cab8750501e_JaffaCakes118.pdf

  • Size

    54KB

  • MD5

    5e1616402b99b90e3a336cab8750501e

  • SHA1

    02fa076073b9236b8309d6171483245f6eba10f2

  • SHA256

    28dedf03ef116aadf795b555d8759e98c68d4087415121b75433b17a0158489f

  • SHA512

    8c8483b716a240dac1b9aba96dd3977eacb08c5d045a4450ad738e27c61f4f336d44071fbad5c030c9ab93e0ff918ad29e44369a6891cd6437473295258fba56

  • SSDEEP

    1536:uGFKp1//KPUTkZNGyrSmjjeiqORFYhyjmfZcCl:XFKp16UTJmveixqhyjKZ1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5e1616402b99b90e3a336cab8750501e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f9ffc77653dc1cffb0c03ed58dba4360

    SHA1

    f01a57cd43976d2a2a2a4ebec4ff9e4b676abce8

    SHA256

    1e216ef06c8ee713498e6ca21cbdbd66babde7cac705a939aed8d3e0454c02d7

    SHA512

    989e63b11d6cbe9334bccc1064c9ef5c550d60137b79f817be9d386acb10a19ddbfceb1cfa5578b5a32bd48724d1f3d318fc16c28c6f77a90b65cc11275c0644

    Download Submit