Overview

overview

3

Static

static

3

8e31046275...18.pdf

windows7-x64

1

8e31046275...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 13:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8e310462753469de11bb0dd5d0f8c98c_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    8e310462753469de11bb0dd5d0f8c98c

  • SHA1

    66a474f4d4387d05c6b7dd2a253792b23e893e5c

  • SHA256

    a84b1f0f8dc9fb28c892706ba1a5d99805ff83d259e2fb42e54079e675a93e3b

  • SHA512

    b38dc47746cb0ed347bb4f097714c89a7f9fd1a936469b6805ada17bc076fcd6e2476303f56a90abd0448e972be41c14ece83e0418b7c3daf6929da2a0a558f6

  • SSDEEP

    768:4XuMZmwgCLWarZE5HpxlwUhxdF807p8N+SP2Eo5HKSVLgN5vyQjt:4XFZmGWSqjlwUhxdF807p8N+SP2Eo53A

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8e310462753469de11bb0dd5d0f8c98c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a551468474cb27ba62e181730e2e66c9

    SHA1

    d63a107c1db61f1895f1f5f4f452b3d3faa4dd90

    SHA256

    a6e0426f842a63b028f813e4b832a3c9e1aa3a4ee7ee4b6429b6c58b9804d5b8

    SHA512

    93a9ea4a2865df659b59f7dc5835fcf6487aead490373741f088e6f214dbfd0d32ee6f041ccb67900f6273a26f510d5dbbba6473558cf69a8f1941f2a85eee6d

    Download Submit