Overview

overview

3

Static

static

3

8dd0c00772...18.pdf

windows7-x64

1

8dd0c00772...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02-06-2024 10:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8dd0c00772c573845165f34f59e7ad30_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    8dd0c00772c573845165f34f59e7ad30

  • SHA1

    4483649eff36bfdb6a6aa0c9d343cacf528162fd

  • SHA256

    3770226d0eda35763dc04e7b73f746959fbd53a296107fb7c17574c8c3fe512a

  • SHA512

    fb8ff7a0f1c031b953aa691940d3356c0ea535af48a9c6e51212495fa4d4be89fededa67c00862f8ac6c995356b5f162f1800bd7dd44ba27bbf40c119c8fe871

  • SSDEEP

    768:YgGzpDbpV45CewVqVeFpmGN4kKiRsWvc+WxvaD3Vld/IOY7FV5zn6qqG83n:1GFHpVIZF+WlalgD7PPN83n

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8dd0c00772c573845165f34f59e7ad30_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b218712e5b7e74b78ad0eca66dfcd09d

    SHA1

    994e72cfcd0ecb26581db7fcbeb335b803e242f6

    SHA256

    fe005e63c6cca349ab34fed931e24faad14390d16096ec01169a1634c7bffceb

    SHA512

    685633d91731b262437c818176a9017b8f1d3af1931f90c8b502fdc237c174dd2168ebc080e6fac7cdcb05295de6b1fba9f5710ba57d4255efe773f2a3245e17

    Download Submit