Overview

overview

3

Static

static

3

3838b35f95...18.pdf

windows7-x64

1

3838b35f95...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 07:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3838b35f95efed07418d3c2f6df10393_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    3838b35f95efed07418d3c2f6df10393

  • SHA1

    4026722fedfd762ed218e2d0ff4e56762e640c64

  • SHA256

    fd0821329cccd73798de6778bfd1e03538773b1629d7b3d82876904c3ed1d099

  • SHA512

    df417472049a8be26250ecd4f3b618fd21038e35d9f227e89fe1bdd99cbfa596d058ea85cb683afacb900a91066208f29bb7b079478f51e84b185539e6d1e4b4

  • SSDEEP

    1536:qWk5ecKwNaorQlxNhPLRAJEwW81Y4IKaUWvlhNn1QG/+x+rNk:flOx0zNAJPWwYbKazNhNn1x/c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3838b35f95efed07418d3c2f6df10393_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    388a3c759e444f3dfa85e9acab59ff44

    SHA1

    dafc43113875ac42c8d7168568e011b9ecce68e6

    SHA256

    a7219ed220d12c548eea4f1f7ee1a7b514d9bf66fb851bfe46ed6faf182a84df

    SHA512

    a15ae9c78cc01c5920a1d6b4250c1fd57997de62b26ea02f475e3454dbb0456c3eceabdc14290516746c961b9d947c825fc5c2710711a1bb0e7214ea46815d59

    Download Submit