Overview

overview

3

Static

static

3

3661c0dc70...18.pdf

windows7-x64

1

3661c0dc70...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    10-07-2024 21:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf

  • Size

    85KB

  • MD5

    3661c0dc70cc8ce3d9acac70afeed5fe

  • SHA1

    fb1f699b1424988e084a83a99dc71684e7ff53a2

  • SHA256

    2d5f78d1e11a3d10d4c68c9d9640126015b76dd94d7851741f97d8008ac595d6

  • SHA512

    54b06dbdd29ddfe735e9f1c20e7404c6280615c1e9b3b84893fd453ef80f79e2ba3818cddf97a0447f5fe922f45fe1068c69c43f73dff7d7b6bf3c6b3f198e52

  • SSDEEP

    1536:w8cbVDsd5zQM4hmyebqory4EEmmzCPKui9zXdWCa0ltu0M+lyWOpOwrn98lLvvEe:6SEMrxEEvCPViqCjlT/nwrn9MTvExY/V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4bf5156bcb6cf6a71e82fd1d566cf4bc

    SHA1

    0e38f4c1696e3bc97f71f492c370304cbc4f58f3

    SHA256

    84a770ea6a01fc0238963a22491b30f50595edbe1a41d854e1f063e0e20b299a

    SHA512

    208d25aa71e20b96fdc03bae030cbf5bfac8d9890cbe7e510ce43cc4597da6bef38cb0383e89e31aefac73adf8422ec6ef0be6a80033a46313b8080d07514a70

    Download Submit