Overview

overview

3

Static

static

3

216607c07e...18.pdf

windows7-x64

1

216607c07e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-07-2024 06:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    216607c07e10e513cdfd35e32e7a659b_JaffaCakes118.pdf

  • Size

    112KB

  • MD5

    216607c07e10e513cdfd35e32e7a659b

  • SHA1

    68f53b80af4f6376febb6406b0e0ee671d0680b6

  • SHA256

    27d6a29c946f12a6d97f0ebdf2a8be7e52da4cb2b45311db67c74d842d89e2a3

  • SHA512

    825ea71a332b2a38a762f9dc52cc361c4858c3b231afa648e70a795d3930b72299188ec26246d2b67b89dcadcfd7059102c22b4b940f05b003bb3c2f85d02920

  • SSDEEP

    1536:qMaWZ8eM/HRpwkYxoD0aBAKWIfYvNphfezLxJASnl38oU8VfcNWXpO/+v/Wp2cnq:UWo/xpwDW7AKWIKNXGvpNY/C1sShj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\216607c07e10e513cdfd35e32e7a659b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8ff7d94ddf353829415e9e7d6b235ecb

    SHA1

    59134402f3edc66fc7f13e5e46271e45265bedb8

    SHA256

    883874ecc7023894accf695518950860ba04908c0f97d5c76013a0d4e6ae0b71

    SHA512

    501516312da8e015293918ca60030fda31ffcf1e611278b6652cdc0d54ddfb98652e5235cc86ec673f8c9a3faed574ab5c806c10889e5b0ea310c23efd83e844

    Download Submit