Overview

overview

3

Static

static

3

692040fae7...18.pdf

windows7-x64

1

692040fae7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    692040fae7c0e3f5ac4167e4e1918296_JaffaCakes118.pdf

  • Size

    50KB

  • MD5

    692040fae7c0e3f5ac4167e4e1918296

  • SHA1

    d366cc70ad3a70cfcdeb7a96a54a735ea4b8f77d

  • SHA256

    6b548de216951e3345f694a6ae5518bbdb7247b52abc8cef540a325642ed9219

  • SHA512

    2040be6a9822545eba1630cedc5e687a0f5a3a2a65958e36c9a5d914e7e12fece1fe61d8e966ed8453a5b609fe8a114232ad23ea72ce769b285e0ccdc468de6d

  • SSDEEP

    768:wgGzpDyBVksi8Ac19xL4MKlDgvmjjpyWm3T9rcJa9tB7VT/aS4ZH9g932QnM5/Th:dGFmTnaDJa9tRVT/a1cx2jTfGw6xm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\692040fae7c0e3f5ac4167e4e1918296_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2e4f67d06922aeaa8c87c1cb85a276c5

    SHA1

    558b9ece7b18350ee27851a794c5b3cf596907a2

    SHA256

    170808a9a632caca307946a0ccd841328a0306b3e80cfa8a572e22f447bc7c34

    SHA512

    5c41f270f942cfc1bf159723024271bde8e1bc8ad5f799ccd3bb732505fef016948d84b7996c2d275485c7835c63807f0768a3b698030f4fdb43e23b4ccd7810

    Download Submit