Overview

overview

3

Static

static

3

5e8d82796a...18.pdf

windows7-x64

1

5e8d82796a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/05/2024, 10:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e8d82796a502173dbdf0354d48b9371_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    5e8d82796a502173dbdf0354d48b9371

  • SHA1

    afbf2fc17ce5ca3a23068e011bae5400831920d4

  • SHA256

    db712f1bfbbf67298abb6badd3ae61cfd883b43e8fbaf55a64b34050113bd5b8

  • SHA512

    275a8fd13e2451761e1d221f2eab2579eab4e12b4f9f1b181045a6c71ee278c2756500a6bc3c6d33d08cc930f3b57075317d171ce0cf8341eac6990125c70d37

  • SSDEEP

    768:FgGzpDHKCi94U4oHQujDEPXukk2B4pPtTrZjBbRb54OsUIVdQ:WGFrpPXJ4pP9rZjBb5aOPIVdQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5e8d82796a502173dbdf0354d48b9371_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    41794aed70569029eefd20bc2843a6b3

    SHA1

    472176640d732e5cce92f47f7bcf61745b9f7798

    SHA256

    7cc9180e1a9df77b43c22b7766591dbdc553847cf68b2728d9c4aac43b1f7afa

    SHA512

    e0c3daf82e88060b19bd8f1888b88fe4816732a8da01a675a661b4bdc7658846521e4212fa3663200fa3aedb9600bdc2f58b824fac28c2cd3fcbabe0e299cc1a

    Download Submit