Overview

overview

3

Static

static

3

987328f67a...18.pdf

windows7-x64

1

987328f67a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-06-2024 14:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    987328f67a0dc21e95912bdfb65c764f_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    987328f67a0dc21e95912bdfb65c764f

  • SHA1

    0cabb453fe5ec0c7ec0c1421f66df8c5908cefa8

  • SHA256

    6a2646faa4d8c33a41dca5d10ee187f31e602c3e5213d440a1874ed8e042c038

  • SHA512

    77775f9dbb54d4b7211c28062033e1e0664c12e3d7eb44dfa8b78c1b8b7a6ebc35c57dbed31a83770b2cbfc9ad8b35877ea19f2ec1568ba58ce2498dd2c814ed

  • SSDEEP

    768:qXuMZmwgCLWarZE5HpxtMc3Ovq1F63Xlh6bkR0vEtHmq8wXI:qXFZmGWSqjtMc3Ovq1F63LIkR0zq8wY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\987328f67a0dc21e95912bdfb65c764f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ed6d5f968d2aee191a6d4e6269e70e6b

    SHA1

    3548249b07671f52bd5469241b989dc728a025b8

    SHA256

    3eaf078e0bb951661b2a9de2150bbaf26fd510fe753943f22e94738a14d8d910

    SHA512

    585f6be60317440e9e90caf558fd6014068a8d12abd52fed8d29e7728f5eea3085842197a8acd4296929fc6990f83f7e27ad323b8c848cc65183eeb7e191b8a8

    Download Submit