Overview

overview

3

Static

static

3

65e4d87c28...18.pdf

windows7-x64

1

65e4d87c28...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65e4d87c28b9c30ea6381833662d55dd_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    65e4d87c28b9c30ea6381833662d55dd

  • SHA1

    c415e9e6c4c29e85377a2c44b1d0fca00b75d87d

  • SHA256

    fdad4c2a01130b7fc6fbd6189292adea942ad4d16fc05df18bc5e62d8d54af26

  • SHA512

    cfd210fc4855e49acf28a672b25197118fb899e5041cb1e59693cd058f8eaffc132d88370b376a12c8de76c94644d8391e6fc1fce914f1fc3490e3bae2af5b17

  • SSDEEP

    768:d6gGzpDsp56DxETj816Yb2/S5dNy65FUbk5wv0V1/spKJI0jFRpTEQlH37C:dnGFAp5MnNTHUAwv0VaKJI0pR5n37C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65e4d87c28b9c30ea6381833662d55dd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4f82f4d180f2d5a7332c707f9dd027a6

    SHA1

    d29a334b4b0cc05947308845682ed6690ff59177

    SHA256

    25c9a4b4a11b7b3771afccd002c3a2bbf545c03bd25cf08a3a3b902fd5f79ea7

    SHA512

    d6c30bb2f557fcdb9b1d8980b4f9079e61ac0040525d65218eb9417f62a8c72f1d1a006a05de43bd1d3a9d5dc0bd41fe9d3577591839041a83d2fbad6997dcaf

    Download Submit