Overview

overview

3

Static

static

3

985c409147...18.pdf

windows7-x64

1

985c409147...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    05-06-2024 14:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    985c4091478f97fbdc5ce86837eb2ab3_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    985c4091478f97fbdc5ce86837eb2ab3

  • SHA1

    e35205ad6ed34e3b269edd37100b1708e8ec3413

  • SHA256

    4adf65a12a321b694138e6eedced2f7b2db076ea2bbf92f899c02811ef851d70

  • SHA512

    836960487b8208f205ddaddf9e5ea76cae1c52daee24e9febe6d970c25627364799a9e607bcc4acbede6ed2cf4fb5db5f1c022072094111302a85ddad244fcee

  • SSDEEP

    768:TgGzpD5pxE9bivFseBwA46XbjJwdsyeuQQlgSCviqM0nqTV3:sGFtpx/je2vupGSCVnqTV3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\985c4091478f97fbdc5ce86837eb2ab3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    250fc9795b67e1adb93085e9cf227405

    SHA1

    27281d041e7d26b401ec79ff21588e9b184fd6fa

    SHA256

    d9900d0946a1ea494c52450e5d501fa6339c149b1c924d0a6b34ea2c20f4be62

    SHA512

    495e982d0145eed5bdb0581a98436bc2ddd308cd5df055eadd56d7b684cfc78a079005be77fcbfab7ecdea761c2c4f529fed4c2ece0944c59585caf957f696ee

    Download Submit