Overview

overview

3

Static

static

3

379f11862d...18.pdf

windows7-x64

1

379f11862d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11-07-2024 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    379f11862d91b963f8eae2ac120848c4_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    379f11862d91b963f8eae2ac120848c4

  • SHA1

    ad7a3fa8523a50eb69e9f469d2f3dc6f836d5780

  • SHA256

    0603479b499c7be658935ddee43ba889e767dbbabad142373ebe2376c1da0346

  • SHA512

    099fb68cc72943c80dfc87592712fc1725462c423f6eac5c816bbbf95f8f1e880ee2221161562e82acf3acd0f6623a01c1e11f57dd20a940b4bcfb3093aa1562

  • SSDEEP

    1536:GHfpffikK8Nk+hbhk7Pkvgof6jNrXoT5Rwci1G08kXMNqwf/pzKYu:IfRikKn3cvvSjV4wciwK43pzk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\379f11862d91b963f8eae2ac120848c4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    738749858b9f45e5f8d22ab44f1b0d66

    SHA1

    85160871033bd4009c113336600dae53bca3529b

    SHA256

    f63ff91ef6d82f1245388d87f1b4bef7cebb1d2861b42000acbc5a88e79fecd9

    SHA512

    d8ad4b254b14e39c129b0c973a4d3755d20c3f836d74af29f7da6245d245e1f39c5f2e969f988aec045f30984e542db7168267a5dd9550f2111e8073b9a92dfe

    Download Submit