Overview

overview

3

Static

static

3

82bd061564...18.pdf

windows7-x64

1

82bd061564...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 02:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    82bd0615645ebbc70ea67e5c960c040f_JaffaCakes118.pdf

  • Size

    48KB

  • MD5

    82bd0615645ebbc70ea67e5c960c040f

  • SHA1

    1b9ab98018c3b413e03fdb29e52435019f232f6e

  • SHA256

    37a4a6632cc0b9651d83502a01cbaf0aae9addfc87e196977467e22e51602048

  • SHA512

    bef6a1a03380847c346fed9f0e8757d63bcdab7467a8bdfe87f90b8975687810330b216f57b9b672c91791572bb17aea33e7d1935ee8d7031f69563061e8c8eb

  • SSDEEP

    768:PgGzpDyBVksi8v+xMCIg6HYdz3Y2M4RyZD4ufdCBLcI0a9B+it2+qgnwTLwOw1t:4GFmotCDzfy0a9Bd/nwTLwOw1t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\82bd0615645ebbc70ea67e5c960c040f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    325bf92f9038ff660bbc68d10b231df0

    SHA1

    2bbc5e993fe3747b8a5d5adf8f88fff88dbe37e3

    SHA256

    f5b9a5932cfc2c49751270f1a621a1085fdacdb2467b65d28219f6f80c97f1a2

    SHA512

    1c2dd6e10e455a8749b9060579135013f47eccbde6e31ef28ecf2da3493264279346e2bdf687afafe24ec4d6b7879905d1c689178466fe33f83226bd2bfc50ea

    Download Submit