Overview

overview

3

Static

static

3

81aa788743...18.pdf

windows7-x64

1

81aa788743...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 19:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    81aa788743e5c460038d6fd0bec3ba39_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    81aa788743e5c460038d6fd0bec3ba39

  • SHA1

    2cd752b0a07e6378e579fe9076a1ec6e0ff43f8e

  • SHA256

    d11720b08ec3f49fb7494f5e5aa477ddb6fa0f154a69b4a4b6f6244e116cfc1a

  • SHA512

    30dd824912e8a1039330fac8c124d485271758aef0b360c0a2a79fe2b977d45c750d23abc1e06f3a81fe2a39287e8a04c723096faf27b336f73cbeb52ee2f473

  • SSDEEP

    3072:/2irbxzGAFYDMxud7fKg3dXVmbOn5uC6Kjnxv4L5J/VnH1VFpsiF2y1nceSu:/2MKlWQ7Sg3d4bOLoJRfFpss2y7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\81aa788743e5c460038d6fd0bec3ba39_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    79016cae7e18ef317300888f1626cd0f

    SHA1

    136b35f35a753adc6bcc7f978433e7b126890cd3

    SHA256

    59147d89b2251a9fe505bea4665e09e3812967df33cf2c453ea2079c8139b838

    SHA512

    8738746a07855bf27a5f65d820f29b13e19fc1622a0c96e712db91bdd08e3d37445392c10c82004cf02a72ff8a05368b39769d3cbbb5605a6e8a9f494cf04e74

    Download Submit