Overview

overview

3

Static

static

3

647bfae9b1...18.pdf

windows7-x64

1

647bfae9b1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 19:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    647bfae9b1c7efb598d27eea7b530ed4_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    647bfae9b1c7efb598d27eea7b530ed4

  • SHA1

    43f9fe91269316a7759da21be7f220b989b03d55

  • SHA256

    dc0bdd85306ef498d708169128557f43df6fb3d2e29e9f232b8ddaf0aec0b2cc

  • SHA512

    f47aea9b7a6b698d57e24daec8ee3e4fd6d55f127ec22e4d3ad031b8e5de9bbf8166c9f21af4f8373070ddaa91fcd2d51e14a24c1a867e25612963b77533a858

  • SSDEEP

    768:tXuMZmwgCLWar3E5HpxpAnYGAFpv3W/3/I3kiIbH7QInc+cw:tXFZmGWSgjpCYGAFpvmXI3kZbH6+cw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\647bfae9b1c7efb598d27eea7b530ed4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f00cc8a7b9c921fde0f7ca9152ef3604

    SHA1

    f399a57d9ccfe456b8f98ac547f8abe336df95a0

    SHA256

    8b15830c4fb17734fde3503fe4a48de631f32275a9040fa7c74ab63bdcd8751d

    SHA512

    1b3a44b8a1033e452a92a8eee74c7881dfc4f848f55f23366c1bae7f7a6bc35a5baeb2364b5a800532e29e27cf3e779f1986c2d13ebc19aae1a18d4a6ddfc247

    Download Submit