Overview

overview

3

Static

static

3

1843ca71c5...18.pdf

windows7-x64

1

1843ca71c5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/06/2024, 01:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1843ca71c5da3a764cda0cbf29f9357e_JaffaCakes118.pdf

  • Size

    71KB

  • MD5

    1843ca71c5da3a764cda0cbf29f9357e

  • SHA1

    6a8d6fb14d8a70160b0d40171de34101d6566254

  • SHA256

    f86f75d91bbb422ef8d815da1bc5a450d085ad0df068ee254838228c8e503352

  • SHA512

    dc4069d6871e64e540af6845d2c52364ac63a76fea36b31fb8be8f566643a1d44e31d5cc948767d02fc0d122358ca17ef9725beecaf8cc8c91b3e7b5a7fce546

  • SSDEEP

    1536:DOoXco1Lt8UMWYtlwKYx73ZvjvAm19NQwim9Oj6SgMew5esdvxM7lICVSgIDt:15vVYtlwR/vjQ/XRvu7lRVSLt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1843ca71c5da3a764cda0cbf29f9357e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bd601a1d85f60bf8ad2b0e487e92f80d

    SHA1

    0818387bb737d01f1f10af23b32e6f081a1a43dd

    SHA256

    4dd7ecf85d12858123a7823d31e73e28a1c38eb9e695e042e8ff9bba60450c7d

    SHA512

    392aae677d4794af393b4627cc2024dd77cebb8b80ea3c0cfa8e71ecdf58ca021b0c6b5b7a7ef1499d3cbc36e0a5e0f52a07dbe3cfbc0ac74ea1bbf82a71a402

    Download Submit