Overview

overview

3

Static

static

3

98a9c6af4b...18.pdf

windows7-x64

1

98a9c6af4b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/06/2024, 16:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    98a9c6af4b6cd432c101ae276a732d7d_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    98a9c6af4b6cd432c101ae276a732d7d

  • SHA1

    cd9d02856172de351bee2975d28d44850d6109c4

  • SHA256

    d3e87e5b0062654b3592e1ed06725675f14db45c306c80a5f1e3ada8a1cace6c

  • SHA512

    7c59b320b55d23078851fced3190d4b50428ef7a9eb740422d15698a302dcecd5de068a3b9f277724af4d8a36c6372742e8ac252ac955b89160a67f381219141

  • SSDEEP

    768:MgGzpD4pMMAxD9dWjmpDC63fSVAnXwODb2YBpfIxeTGPl8ODC7MYTrtnOWWl2OdZ:JGFcpMO4rWYHfIx62eODC7MYTRnOWWl3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\98a9c6af4b6cd432c101ae276a732d7d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b1a94e8291922a0e81b53d5eba1c65fd

    SHA1

    abdaecada02101f15926860549e6d13d63cf9480

    SHA256

    45ec3dbe66b9c9a987888ddf66b075a65a34034177474ffda29f0d905668c6eb

    SHA512

    764963b3a9f6c95897691fd787a46caca5d5739669a564b6775a81c5997ab69f6df23e0da33febcab2b8cf661aae54498b6c201b9800aaab6392a1bf9aa230e8

    Download Submit