Overview

overview

3

Static

static

3

65d595a472...18.pdf

windows7-x64

1

65d595a472...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65d595a4721a5e0ea6045b7d8a1433dd_JaffaCakes118.pdf

  • Size

    28KB

  • MD5

    65d595a4721a5e0ea6045b7d8a1433dd

  • SHA1

    9a97af7261e4a353449473731b33b5f0a9cb1f97

  • SHA256

    489d31d06c2427e20f50358512f172f1886e3879b85cd2d2391f7019f2d04b0e

  • SHA512

    558cde3a27e081b93f4e1690d0d911b79fe9f5a4fdb54a1b56eb0cde8e02be6277381fd2293a4dcadfef96b195df16d7a0ae0bda2dbc0ed39485df9a40249034

  • SSDEEP

    768:5X2mbMRMBdlPrNCMFzdaCH7U7kLy2gyKe8n7N:5X2crNl4CHw9yKFn7N

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65d595a4721a5e0ea6045b7d8a1433dd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0b1b48145e881664762e8154ea906231

    SHA1

    b8f9c4b7c93bd3cc8207c332d9ea240c45610a76

    SHA256

    fcac8dd2ef5ae018a5c9b770b98bf2ed2e35c416b0006d424e828b4814d43409

    SHA512

    b4c15619ba5d11633636edf8124b91b30b8b6596aa2464fbee7d2f7029fb602bec6994f025ce1d61cb980f7ade328044e09e586a2179a53fc3db64829e2b56a4

    Download Submit