Overview

overview

3

Static

static

3

65c715657b...18.pdf

windows7-x64

1

65c715657b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 02:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65c715657b9c805f166a77ab24cf743e_JaffaCakes118.pdf

  • Size

    31KB

  • MD5

    65c715657b9c805f166a77ab24cf743e

  • SHA1

    082809fd9e9f1899f01b4d7a27994ed48ee8f0e3

  • SHA256

    98cc6c39a5d89f3d48cbfdf136310b14eb64851aa03ca508b1e6442b1026d7d1

  • SHA512

    6a851d9d450a8a06cfeb6eb04ca0e097996a24f29e991fa5a76e67df2642b6ffdd04b6bd2c12d636c1e0aaa2fe41cdf2c344e38ec9fbf735c284612be890b74b

  • SSDEEP

    768:WXuMZmwgCLWar3kZZVybcLfV8y89GnufhEiVUEIHlaIcpF:WXFZmGWS3kZZVscxf89Gnuf6CUEIHla5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65c715657b9c805f166a77ab24cf743e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    64ec6e0f850fb738d46a52429d4a8bf4

    SHA1

    f444faa9eb538ee504360d825e8240e731737ef3

    SHA256

    73bc13a39f15a460fcf5607b1811693040266da25c0c80d88d24161b87cfc6e0

    SHA512

    3aa8c4a4e01ac2d4524c1df11107361a10bff1a91698cd26a93c6a95e8e06a149b71c805e3bb901b37e4a242f2f96430c310f11a2e0dc6c5df69a729b9a5cd3d

    Download Submit