Overview

overview

3

Static

static

3

244773bcab...18.pdf

windows7-x64

1

244773bcab...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    04-07-2024 02:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    244773bcabe80dc4cb8be69ef51627ad_JaffaCakes118.pdf

  • Size

    93KB

  • MD5

    244773bcabe80dc4cb8be69ef51627ad

  • SHA1

    0230b0c0ab17a6887e4cef4c507c21f913c51be8

  • SHA256

    70416b27c961468d5ea86af7cd3debb1a4e008c945a622cd7259d3bfbcfae907

  • SHA512

    20f66ce6a95cff2a7183b9a8baba4ab8526d8454821b6a300a96608a7f9eb9c462fc6803b61d3114464540d6391823faa9a1b4db361eacdcfe219dd961ae7b2e

  • SSDEEP

    1536:pRemAEPqm+sTJZoalS/e9r17vfqLl3oCjNvY4lRY19YO3WDWao0rGE9atW6pOu2q:Km1Z+g8alkep1vi5YONp7YXg+Foa+u2q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\244773bcabe80dc4cb8be69ef51627ad_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ab102f98e5fc59530a3985220ba08dad

    SHA1

    a3dd45109a8a46a5ef192fbe8302cc7972947fb3

    SHA256

    1714316efb9ca968b8e3ecf47d4afad66f099c01d1ff34a6911362cc95cf5f9d

    SHA512

    bd08264cad4da660c087ac6fb740eb7328b8e3ca80ec80f1ce4c00f6a850bc73e450d103d8dd71471f634952c2b042cabf0ba3023ec918c7b57bc5838f930cfa

    Download Submit