Overview

overview

3

Static

static

3

8860c1e91d...18.pdf

windows7-x64

1

8860c1e91d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 21:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8860c1e91dab6e7e833ead36a89b1038_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    8860c1e91dab6e7e833ead36a89b1038

  • SHA1

    725577f5c07068931b91bc34da00449bb7b26b08

  • SHA256

    ce69f20e4a681e5201301b4ba851a17d6333ed73a3126c0ee02b2253103440c0

  • SHA512

    3608d3c8e42e6bded1c0a3903615ebb57553daba78ea38f0589682baaafa925ae5ba73adaee37ff71ea231e17dcffd490a99c9bbda959b3a71b4a49f1745a830

  • SSDEEP

    768:kgGzpDFVn3eQFSgHySO1mGkW8CLaSjPUTnNiKMVf8Fb5kCyd52YjDKB8RPrXXlz:RGF5h3eQFEaScKEF1q59E8VrXXlz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8860c1e91dab6e7e833ead36a89b1038_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4d052d8a9d9b86a47ad85aed1d889c4e

    SHA1

    f006bb942baf694b33d4fe3361d9fc25d089a17d

    SHA256

    a5a2f3df9ab111cb83d52fe7de6609950fc68bee440234a1c9e341ccd7ce0278

    SHA512

    b72402659a1723c5c1d48e0ec3006d9624c12be220344652c0526bdd9f36dbcda3b1d4d51f80a0011f5cfe3b56c29aef8cf8f10eedefeb8a39d192a8eb9834fe

    Download Submit