Overview

overview

3

Static

static

3

65dbd0f983...18.pdf

windows7-x64

1

65dbd0f983...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65dbd0f983ef732708d34cc7e312abc6_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    65dbd0f983ef732708d34cc7e312abc6

  • SHA1

    4194aac03cbdef6833a69891cdbe19c27ad40499

  • SHA256

    c1992f38bb47ecc9fcf1aae3fb5f1c12fce0e1500da40ad1f752fbfc70f1e05b

  • SHA512

    381fdd1dba594656fd99a9089b332aca4259fdfed2d2d8c6f90392e1f0d47ff3f0845b7c9d0481ef4badf0adfff53ea285a6e6bf087ec8b5c9021aecc03bd761

  • SSDEEP

    1536:4GFEpsF+ln9M2aCiuUDW+zdnnHDZWQGpPiFlrVxWoq+EOt8i:VFEpsF+l9paCV2WSj8dYvVNq+FD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65dbd0f983ef732708d34cc7e312abc6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1a6a3028441106852b9dac063c9dec48

    SHA1

    52d032ae8c323d0c973e9d363d42482b128ccd5c

    SHA256

    4d957bbf167b43907923a99943b73f47b6b4cfaba615d940a01bbf9a90dc5ddb

    SHA512

    d21d171241c357f73df90a4df2982ed33195da776cf48692f150fc3d535ce8ea44d0031d49d6ea967c1a159ec0f2feac7f40a00b6cbcff5083117fca0691461f

    Download Submit