Overview

overview

3

Static

static

3

90e9eac994...18.pdf

windows7-x64

1

90e9eac994...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    90e9eac994e4f24fe079c5362805749d_JaffaCakes118.pdf

  • Size

    185KB

  • MD5

    90e9eac994e4f24fe079c5362805749d

  • SHA1

    80dc82fd9b53dc7b2d6a0b4f0e1e4578561f3b4b

  • SHA256

    ff25c558011a90f90b61dee86e6d5ecb5b962ca15dc08f469440260f3c9296b7

  • SHA512

    4d44c46bdad41ba0e5c4791ac634545ad9c8e436469bdc9da967517caf7502194b5aab8a950256dfa6e021be2b495449733853bafac46b360871dd37de892909

  • SSDEEP

    3072:Y2irbxzGAFYDMxud7fKg3dXVmbOn5uY6Kjnt7mL92D5FvpZOxAi3jy5SZ:Y2MKlWQ7Sg3d4bOptWi5FfaN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\90e9eac994e4f24fe079c5362805749d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cbd67c2cda0fc8900d7d7163575ace7d

    SHA1

    302a160921ae4381adc300705b89dac01d8780a1

    SHA256

    615324f0b19a9e897f293501b36f034a6908121413c907390fc43f70322f4171

    SHA512

    58565b8fc88b1793d2f779c0acf80eb7fbb7164957980f92c4340488d8ef02499c920d6f95270c79b0e13e22766e2f768fa156fd61db1b3e6bd62d9de7f95109

    Download Submit