Overview

overview

3

Static

static

3

8a169fc2e7...18.pdf

windows7-x64

1

8a169fc2e7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 09:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8a169fc2e795be1c0bba762a45cf4b31_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    8a169fc2e795be1c0bba762a45cf4b31

  • SHA1

    f7644bbc8be1973b06986a6ebe2d4c45f3fb05dd

  • SHA256

    2b2c18fa1db4ebe5228ce8c162e797b3e24966d2a9030001c51b0ee5080256ef

  • SHA512

    04994fe6a202150b60a9a5d90e7aaa7622f33e8147c79978eece3c82ee414cecb03af0849ffff32af8e7865e675f1597e76534f2193cd335d4ece46c30da3628

  • SSDEEP

    768:et3HKQND3AtJO/oL29mvM1HvtrMUJAv5qJOyyQ19Hhs2n1CaVzVoLE5dXuMZmwgm:63qqD38Q829madMUJAv5qJOyyQ19Hhsm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8a169fc2e795be1c0bba762a45cf4b31_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2864

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dc357312588a5cbb7091daf26e0f6e84

    SHA1

    7d0883d6f4216ff1547e9759286a7bc84a8b72d2

    SHA256

    1b428b529388331c5288f0736d95a79b83f56d2a7d20608a00ae8ba40cd04472

    SHA512

    c7155d2de06b09d58e14b8a0e4450c6526c0750b06e8397b3f68fae626e3bd4709da6c7ad75c62c3b067d8fc6f5877fc0956c55fd9dc03af93c4aa153368016f

    Download Submit