Overview

overview

3

Static

static

3

5fd24425e3...18.pdf

windows7-x64

1

5fd24425e3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 15:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5fd24425e3914a8319dbbd5751c9f2d7_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    5fd24425e3914a8319dbbd5751c9f2d7

  • SHA1

    46eafc2230878da564ef36b69de9c64338aae0c5

  • SHA256

    77ae866b6277e2124651439ae5c3900a88709bc5eb9feb2397c0022d160ae320

  • SHA512

    742a257da8794e212b7edd74d284b94862a2e12a519654a8ac6de261fff2291f5273a73ee58a2a12edc78d43c3f2220fc9f5158dac52823344446ce629450ce9

  • SSDEEP

    768:XgGzpDyBVksi8e5baTGQkIKNkw0/1r+XlCC6fxkpWcVZV6j4hIqvVy035D9ktow2:wGFmCkMVEfvaZVw4hIj035DGtowDC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5fd24425e3914a8319dbbd5751c9f2d7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a67fec747f9e465631637f923766926a

    SHA1

    42d7fdf2f253080aabcbce0460d9ce699c893876

    SHA256

    3b164237c461451b71c26b28c2f940da4bcaad67bbb1d1de8000d4215f37ecb3

    SHA512

    4e2ca438fcbd177a56a7a9ce3f00a78353420e7f0899f7da92d1fa7044369689636d9d848a37aa1824591e22c6e017cf37f71393c837f36d0ccd63ae571f88ee

    Download Submit