Overview

overview

3

Static

static

3

81dfa912f8...18.pdf

windows7-x64

1

81dfa912f8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 20:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    81dfa912f81027014743cb2239d39498_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    81dfa912f81027014743cb2239d39498

  • SHA1

    d90dcdbd9eacad92379b018a259f15ab3c89c6d8

  • SHA256

    34c689397347e4fa82a2ad08b1151ed9c677a06cb04fe318b3bb1d87c6919142

  • SHA512

    bfbb800bbfb4d567aa4a4b07258c188a0ee8482c14721da14dbe80d6aa24b5c554d4e500b2198c37ab6056ae1d4f0df3526ee48520d955a9bd3860f7fe4b7876

  • SSDEEP

    384:1LTbGXtpq7t4Urq65Rr5ptm5K+EOR1wEZnOiqxWbXChGnbUc7yYLgMqX:1PbGpSu4/gK+BRDOvQbyMnbUc7nUMqX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\81dfa912f81027014743cb2239d39498_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2836

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f01a14511357d844907a3cb828a17334

    SHA1

    4feac5cbb2229af24c0c44251032fea4e2529e6e

    SHA256

    d926e7deead1858385365afccc18a1665a5fa862ae43ca8ed56eedc6d936c1fb

    SHA512

    6208e38feeb5f60bf31391ad37b93c7583b64706fea6ec7091593ac9bec6a0fc9c4e1812bb2b3a383aefa233d6002eb0b53630005697c63fc55e903ae49f097d

    Download Submit