Overview

overview

3

Static

static

3

65c8704998...18.pdf

windows7-x64

1

65c8704998...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65c87049980833505c92aecfae0862cd_JaffaCakes118.pdf

  • Size

    57KB

  • MD5

    65c87049980833505c92aecfae0862cd

  • SHA1

    104f419ffe0f7ff0828d242522890d96d246bde2

  • SHA256

    54955330d264485e12429208eaf469b007d95977521fe35bdbd6b3b0973be5eb

  • SHA512

    49e26362b140b212ed66657b1b97aee2a5683683509c6130c10af7b1083a6fe17c6f45da302255f447b829c191d5f61f6e8da3e3ba7c62c8d66ccd464b2f2d13

  • SSDEEP

    1536:t/MWNqy9nsCjtxv+gksSZ8O7G3vNxpjh9826h8QvenBR3LNJFVoHXFZmGWSkb:BMWNqJcf75Kv6fXdhW2K94fFVo3yskb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65c87049980833505c92aecfae0862cd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f2011104aeda1c00f79aa382bdf298f4

    SHA1

    d11b27d3acb15db3740a18001e98b5523d09d4ac

    SHA256

    41cef89e6ce181e686f73d750186e9e3271ea115029c241ab64f583958df06cf

    SHA512

    b3a2b3905727878359d1436458e75631a0f7c50ebb3eec29e76b67b5d557234152b5834d58dbe9262d3f8d06d055b216c91fc973c8b94c3328ae280cbf1b09a0

    Download Submit