Overview

overview

3

Static

static

3

303e1ed341...18.pdf

windows7-x64

1

303e1ed341...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 11:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    303e1ed341a65c5dde5a921d70170008_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    303e1ed341a65c5dde5a921d70170008

  • SHA1

    b3d1d4e7986cdf72467190043e0ee6289b96ee7f

  • SHA256

    a85ed0ee505f45095218c2854de97e81eb1945873795d6efa7228a1e2fe55654

  • SHA512

    54eb46686a8768c76c2d8739e2b8b5f3d3411054f200c632d1ce1404848c3c10274842ba07568b79c944d4450ce1ef8d583c26b8c114d3b11513532431c3d134

  • SSDEEP

    1536:sm2/0BkbuBR75bcGTaBv2J69B/DjxhCbNgXQuj9pjGKh2IWaJWHPfMDOM7IWwpOQ:0/0/BFyGKuJ69B/D9sWJj9Znh2qJqkdg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\303e1ed341a65c5dde5a921d70170008_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6da070cac60de0da020420b0ca2834e0

    SHA1

    26edd9ed5caf2370205e04bf4627bff287d668fb

    SHA256

    8070e703418863b4d97ac0a5ae0e1ef7968353b6187048b38e24ca73953a8974

    SHA512

    d830cafec949e6e8b882839869af510eab4a41112cbd03f7d420a65a546fb5c453d36e5e39852779927710a9978fdfaf2f8cce858bfd6c8f4be03e1d0889456d

    Download Submit