Overview

overview

3

Static

static

3

965b2da793...18.pdf

windows7-x64

1

965b2da793...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04-06-2024 21:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    965b2da7934d4eedc8c580810d42891c_JaffaCakes118.pdf

  • Size

    186KB

  • MD5

    965b2da7934d4eedc8c580810d42891c

  • SHA1

    f2f22de5356c3d64c1573a07621acf333963b30d

  • SHA256

    fb79a8937975b31641700cb75b36d6edffc5acc2d9ebcdfd15f5c64ae26d4f1f

  • SHA512

    1d54ff50f64e398f7ed2bf34c45c40d3598d87c48317aff60d0181822ae5c2117b4a80f2f5f3d7e775c6d6e76b21bd6295ad910419c0ba6ab736ace09ef465ad

  • SSDEEP

    3072:62irbxzGAFYDMxud7fKg3dXVmbOn5us6KjnBSN1y8eLz3eTPpqtBS8:62MKlWQ7Sg3d4bOpBdDIE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\965b2da7934d4eedc8c580810d42891c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2fd9c457563a507c78545252c75ce767

    SHA1

    d8a2f626eb7d01cc00f60c74fa02934f46f9729b

    SHA256

    ca245b133d1d03342eb79898e94ba301134cde26b51767fd68df6de2b9240f16

    SHA512

    f666a9d1478bfd82391d06788d97b6b189c0c098c84afa48590fddaa20de7ba05b017161ced40f2f7294a6c94c07af1367cfbedc994501c9dec0417a82ec0efc

    Download Submit