Overview

overview

3

Static

static

3

8f54ef51cf...18.pdf

windows7-x64

1

8f54ef51cf...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 20:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8f54ef51cf142225b64ea7737ef8f6be_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    8f54ef51cf142225b64ea7737ef8f6be

  • SHA1

    79c43cc863352b7862441c09b735a9f819846fbe

  • SHA256

    0c558bc268323d24b68b98500b73ed5afacc317394d68f38f74cbd5c3670f642

  • SHA512

    99f8333af7d67c720fa8375b6503a689756adc637a75f21fd0138e6db0f5e60e9fda66789f0ad7d348dfc72bb411de94c6d03a8636a77fb57c63b9207c645f38

  • SSDEEP

    768:ASN55Km6t3dVdf3W3oluo755lE7TsafnOipw3G179UKfqtq5h4oigUzr+1X73E5p:/v5KPttVdf3Wwt5m7TFP03G179UKfqt7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8f54ef51cf142225b64ea7737ef8f6be_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b007a72cedec5997aeabeda0ffa01c04

    SHA1

    87a281bbbe5cf94085a04df1cdc95956781e6340

    SHA256

    9956e644e78ec59b95afd3564585a4eeeeefb50d03c1bc9d429cdf7e8df7ed8d

    SHA512

    490d5b0ff2a4a6bb80b6023a0d27bf21fd4b651ce63f951e23eb3041689aa9ce945b45844f9f356ef2a86957d5e3e8922024b67ad3b9443b88b4f5b0f6b0056c

    Download Submit