Overview

overview

3

Static

static

3

65a56b729d...18.pdf

windows7-x64

1

65a56b729d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 02:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65a56b729d7d8d564a83a885ff0ec035_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    65a56b729d7d8d564a83a885ff0ec035

  • SHA1

    1d0542eeeaa941a0e366c2fd1bde9335d30a7e46

  • SHA256

    159e097dd232870e4ee260803697b2993bfa0fd957647d9de8c2f6ef9bf18887

  • SHA512

    089b95e79cb3997e4566d24e0d3193018dd9efa0cc51dd1003f7dcaa0fe7b478c5f0426ec22ff4b61f5c5749dc3a0eb14a73a34306f67580ab00d8b133fc13da

  • SSDEEP

    768:EXuMZmwgCLWarq68v3UMzjpehfM+uZaIDm5wHnA/VDHzv/A:EXFZmGWSq/l3peNM+uZaIDmaHnA/VDHk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65a56b729d7d8d564a83a885ff0ec035_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ba008505e8cee8fdc1360d339eaf8ac6

    SHA1

    0ed673e357ba0069291a6bbda30d2ce39647146c

    SHA256

    2883a97ea8694ce964a4e517b738bbab4445ecf073e64a9bc8ebea00e6bdc89d

    SHA512

    527df2c89f336707f8b83ee712fb5302388494acb7188d833b684248ff39cf51de0b60966c8fd28fcadc66c9d3675a7fc0df8ed1c5a2e125c1e8738109af18e4

    Download Submit