Overview

overview

3

Static

static

3

88e820f804...18.pdf

windows7-x64

1

88e820f804...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 00:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    88e820f804796ef97c8b657ff8b5a1c3_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    88e820f804796ef97c8b657ff8b5a1c3

  • SHA1

    2f61faeb94370f391d748d2e58dec05b33f6442a

  • SHA256

    96c5e11e520dcd9f139bbd87280149bb9524b7727bdd03613e678662368bd8b2

  • SHA512

    3db9e062012a53b7f0a77a73982df93cd84ded3e3422793eaf56d27229159b5435a45830d0a3e6b32d06b0ed16b52183bbcde8da2a62ff01bba718241c427634

  • SSDEEP

    768:egGzpDxbT5lkSkH1UxxQwDWhY72SOkI2mH4mDabytf494v+wLQGTLuF9LmollAXZ:bGFt8w7Rmvwytg94LLg9LmYlApeNRIPB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\88e820f804796ef97c8b657ff8b5a1c3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d2724e6753609246468f4f42b2f01900

    SHA1

    7350a27996ecbce64cc4a540ce76d4598df53600

    SHA256

    2b5398f212ed06e55c471e34b92829f7929e07bb16d857ea1351002f75d8319d

    SHA512

    62315c223775dc468082e94870afb6750d9c891ca810a8abf58877a7cb2a4455ea39ee6999c1690bcf1713f0ff05c5daaad3bacbda9b4d5eb4858b9e151344e0

    Download Submit