Overview

overview

3

Static

static

3

5e2cfff56e...18.pdf

windows7-x64

1

5e2cfff56e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 08:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e2cfff56e8a21e1e9584cde12e9bae6_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    5e2cfff56e8a21e1e9584cde12e9bae6

  • SHA1

    3b0c51cf4382271aad0feaed90f67dc1606bf302

  • SHA256

    d46f2f334a8bf4d542b7a5697be81a91eddbd0934cd5ae9e36fcf374f1459642

  • SHA512

    07dff239bc961fff55049649f7e31d8d5687a4b0cc4927776c29378457749abec422e83a22d940414846b3506c44fe878c6affd18593e019c7ddc55365e76b09

  • SSDEEP

    768:QgGzpD7pIsT/KbyQjEtJ8hifyQCdQt2d0yhU7d8YhZVbVDaPAT:9GFHpt60kd0ym7d8EZVbVDaPAT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5e2cfff56e8a21e1e9584cde12e9bae6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    de863e84129582195d0c9d2bf4e0b824

    SHA1

    94cc148dd2ce10b12d9081ca6d2ee66a06109c60

    SHA256

    ec5502f1b23cf70bc814a7e958147d2248e0cc81173b4e2951889b65960f379d

    SHA512

    19c485ea769e333cb19a6ad4ab4def8975ba1f98b3b4f2c388bf3c0313b8b71b00eb50648742aff84a74963b5aed511d71d2b6975944a7c2bbfca939473d696a

    Download Submit