Overview

overview

3

Static

static

3

9f23f8624a...18.pdf

windows7-x64

1

9f23f8624a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2024 18:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9f23f8624af815cb6bf8d83c1e1c0abc_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    9f23f8624af815cb6bf8d83c1e1c0abc

  • SHA1

    3e6ffacdcb5d6caf5852d1b02ea8414bb3b6f932

  • SHA256

    70af9661a6639377d172fd340f0a532582d5ba067e4339aeab9dc536a46ba1c6

  • SHA512

    564e7edfac920db535b4459bcd9954c764ac346e5f26786b5526f51941b6d4fec838c4df416c74523377f2284cd51d3cbccc3fafcda7365a0b126a5cdcdc8970

  • SSDEEP

    768:kXuMZmwgCLWarkDMWhFM4Khbgmomsi4foCtwTLLXLmv2QWvM87wO9IeRsP:kXFZmGWSNOFMLhDoXHNmO2Jn7wNeRsP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f23f8624af815cb6bf8d83c1e1c0abc_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c0bf89e00cb1522948d82ffcc52a39ff

    SHA1

    9f0aa408dd2ddd7d4275acef25bc1889e24955df

    SHA256

    24d48ddeb2f1e3ff4b123a41864fe6c1f2973da07ce60fb04237d8f241bb7b19

    SHA512

    f66640ec1ca06eb329610d6c176e1c58e4003526cc98a0c8ed6d9f1360d2f719ecb830011c510e252c743714aab2d2c8fcd80648991374f1e1e9e8828ff65b31

    Download Submit