Overview

overview

3

Static

static

3

953074f72f...18.pdf

windows7-x64

1

953074f72f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    04/06/2024, 14:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    953074f72f024354dcf9193866301184_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    953074f72f024354dcf9193866301184

  • SHA1

    b4894570ec4aa38ecd128105f17c680024978090

  • SHA256

    0c4139c9df7db0be203e16831cb439e5767ad761e64bcca0d0f90fdd0806ca2a

  • SHA512

    a1005e4db846d23173ada2b46e948dcf7522286780a1d39b5059f343b98564625da3a68b941c13696f66e4d93309fed092ce72234aa37e730665faf7b7aa0153

  • SSDEEP

    1536:RFXFZmGWS85jEpVQJ29AdZvarN9HZcX7ifuDU6wpWBtUYoTpOAghexqRJJYA:R1ysoITQJ2OYWe7tk2aX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\953074f72f024354dcf9193866301184_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    37399333296763cd1e3d4166ca85bcba

    SHA1

    206e3209fee81ee838f1c42ddd72021de3aacb5d

    SHA256

    8d16616a3e1ac03866fb7fc07696986b628526b6108262fce29075234d4ad932

    SHA512

    eabe7bd1ede241b0c2676a2a3a8c0bfe2a6b81d72d30306bc1f024744bf49ee63471ea5c33a8403eaa4b684cf5f287f984f7cb6f6db76e02016cc30d6e5c280b

    Download Submit