Overview

overview

3

Static

static

3

95f491e8c4...18.pdf

windows7-x64

1

95f491e8c4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04-06-2024 19:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    95f491e8c4ad06f47ff406d73ee259a7_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    95f491e8c4ad06f47ff406d73ee259a7

  • SHA1

    6ad6760f576f4be2069663650c80d87c7a7c3523

  • SHA256

    5fd529a1e2305577c6479c24c978faa7f5e84161f8f4336d8c16ec3718a185b9

  • SHA512

    f629ed1272a2688c274d4962b1265b9504bb95da90f9083666aaa39c1221e06ccdf7adc53a6be1af424d67e6f817169f2f74f84349a407a69301e7babd24859c

  • SSDEEP

    768:ugGzpDyBVksi8E12fTJZundCLExYWE3SzdbI1DjnXLi1oSvWI3+jWnoKqSYL8vEP:LGFmalJODPXLi1oSvnuZzSYL8vEP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\95f491e8c4ad06f47ff406d73ee259a7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9c8d38fb8677cfbb3419c558d1b9072e

    SHA1

    e5a5a1a4071dda3fc31c48892f2289d63f1f3b25

    SHA256

    2a30b065d770dbd2649266b98a0f8c45e487531e202953fc6a051ebfceadc262

    SHA512

    df7ab37f8ae1b34839b062afdb9b374331bc82ce71098db0210d5d21a89a39af844b4cea336162c1ae9651e04946fa80c67bb7dbf1677daac154063caff2c1e2

    Download Submit