Overview

overview

3

Static

static

3

84f68031bb...18.pdf

windows7-x64

1

84f68031bb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30-05-2024 17:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    84f68031bb8e767e89e2e54e8fdb9fa2_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    84f68031bb8e767e89e2e54e8fdb9fa2

  • SHA1

    3e9edd5334193d9a4e62cb335791911d7e7a9619

  • SHA256

    6d0eb620bc2c4bbc03622457742335218c474259683125271d65ca057e08ea81

  • SHA512

    a560077ecb15f27f2f17e2f94b778fd16654ebce42e6eeefdf85f7c3d9a3aaf8b39b8a688d8f2a753c4c25ee5973b541518c083812d09cd761c02724d244436b

  • SSDEEP

    768:YXuMZmwgCLWarTF4HzUdxGJHG2obJDJpWU2eM0cjDZSGq+:YXFZmGWSTFazUbGM9DJ75M9fAGq+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\84f68031bb8e767e89e2e54e8fdb9fa2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8e08d68fa8317de0a1a878c61ab9aaf7

    SHA1

    fe277b6287cf05eff00d62a309aea4b27dd7e9fa

    SHA256

    b9bd507824057e4f23c04bbf930ffb831bd05413dbf0c2d78865203fdf417332

    SHA512

    1a00541e603d5074dedde75716755992b8fe875e31c6ad863d8cae8697c231d8d4173decb53910d18a4c37c21dac40081b3eec6073065a930c01f0d9a57350c1

    Download Submit