Overview

overview

3

Static

static

3

35d332a27b...18.pdf

windows7-x64

1

35d332a27b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 18:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    35d332a27bb2694091214f45b0cfe4fb_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    35d332a27bb2694091214f45b0cfe4fb

  • SHA1

    cb4a9dc20f2dab7c5904c16fd0e0a25e044c0a31

  • SHA256

    57d648f4cc4b3ce5988289f4209de50eb1cce87f4a6add058c9d448e86f97468

  • SHA512

    a665d04778b9a5b9641f8a193219e233abfc87ae611289e5dd562797ceddf3f64ace01251064cd7af57c6ceadbf07efb848d2a01cb6354fe6d146f8d63144ec2

  • SSDEEP

    768:lrbhJw+FT54Wh8eqBLzHH60qMkxZx2BR0Fjg8kbEeuNHjdc3+:JhJw+Z5NipB3yMcgfegxbE5NHaO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\35d332a27bb2694091214f45b0cfe4fb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    17d04c771d28d4829cfeb53e889b7c73

    SHA1

    03c6baf747b482de2008f14d21ed7bb1be94607c

    SHA256

    37b405db9b2b8dc82fdb41eecb4c0e312df437d73a58a050f2d0dd2a817c6e21

    SHA512

    860369c84071c281cef163c4bead73dcf785092de3b8e788e5c5976ab884c6ea08e1e978acb88f08afe094dbb6ce6b270ebcbc9cd3d34e9fb04dc02898fbc20a

    Download Submit