Overview

overview

3

Static

static

3

65e53f5849...18.pdf

windows7-x64

1

65e53f5849...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 03:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65e53f5849227d37c8866ab5b880f25c_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    65e53f5849227d37c8866ab5b880f25c

  • SHA1

    e75192bc551a58a266ec6d4c90edf142e4af4cf7

  • SHA256

    f5114ba1d03f5ae617af9ff720503a3040a81c257215858d4adaf4a7246c8df3

  • SHA512

    219b43ff4ede8c13c495a925642189d69057ebb304c97ac41d486e08d007a75bbd59f55c11bbe78cfce212dca5025dffd1fd8499681911d91c7d8210fe848244

  • SSDEEP

    3072:R2irbxzGAFYDMxud7fKg3dXVmbOn5uo6KjnnQ6OT6+xU6zOMLl9nciSI:R2MKlWQ7Sg3d4bO1Q6OOTMLPf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65e53f5849227d37c8866ab5b880f25c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    546e1c7d41b85bccdbdc94bdca934e53

    SHA1

    c44488f68a220b0c40dd19ee2501dd6ce1d71b5b

    SHA256

    0399ac0902a6e30edbd99aea31b8a7782b1b982b16f479a2e56d91b7e4800cf2

    SHA512

    a8c314f5568f258e0680613fb382c67857f7038293cebbcd57c6645efb1dad141fe8ca842b1ff8780e1d99b07584f9a47db112d41d6de97c6b207201e40c29f0

    Download Submit