Overview

overview

3

Static

static

3

65ddf739f8...18.pdf

windows7-x64

1

65ddf739f8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65ddf739f842c0090d37be0dfc3c8da0_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    65ddf739f842c0090d37be0dfc3c8da0

  • SHA1

    39132ab49a9b050cb6a8e65d3c2550bb9a23451b

  • SHA256

    403b343022624ff9bc6e5eedeb53c0170b9a80172b35e730ab6e606690bf3366

  • SHA512

    dc925c19e3df0597be7171258c67e9965e67bc2f06aefb4514597b07c7793d5ee081b5ec0ef33352a534b7042eeb165e64b552c9cbec2df7bab3d303161a23e8

  • SSDEEP

    768:vgGzpDk1Gn6iUy1DrW6DJhAs6CmSVVZF+ND5/UUTNqqFmdyPW3YfW:YGF41PCmC+ND5/UI7FmaW3YfW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65ddf739f842c0090d37be0dfc3c8da0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3016d5aa11f9c4894f9e41443a7b4694

    SHA1

    29b56307265f89a89283d3ae2b33681dfb7a6390

    SHA256

    f4c93a72ab73e68b72a92493fb7a1679f7a43fce4fd5595e696034e1ed93e4bb

    SHA512

    df2a6eee5efb915eb0cf0157e8dcd540986d15c08814c444a9c0ef9984076e07e3d1c82406aacf3924e7d5de47975b821c84d3739155071216aaff5a6cfa59af

    Download Submit