Overview

overview

3

Static

static

3

3876e2a0e3...18.pdf

windows7-x64

1

3876e2a0e3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 08:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3876e2a0e3e2bee24576e59b638feda4_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    3876e2a0e3e2bee24576e59b638feda4

  • SHA1

    a431c9a566062041ec0b16b83d66e8a505136f5e

  • SHA256

    97c75a34126683bb852008465c527d63524a3d767f94122764d315d09a4d4b5b

  • SHA512

    ebd27cfc30b158bd9884c759d15d35dd870f5eaf658fb9d673d60e64e6e051756c44b43c68486ec8cc02498a0c816aacb78e96da9c8be758c4c987d57453540d

  • SSDEEP

    1536:SVQ+CtmDtpA/HiZlTcnaL5v8/GLh3VmsfwrEJSRQufWGpOKE+72BcWKoea9xTG51:titpAviwaLBnLh3V5flEuKTaBua9gf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3876e2a0e3e2bee24576e59b638feda4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6dc3e67bc4447f7a179619317a5aaa01

    SHA1

    7c701d3ef82af7acdf905324486eb260378e2b57

    SHA256

    7efd1e67b6e34e3d102302a99e866dabf5d7ecf32e1650b49a00096960b481ba

    SHA512

    c45e0881ceb014abdef153015405ee44900dcc90b1c1db5a6188ac4a03b9d51f2faeb666bca7cc3f3e2ffe4d78722ebfb8f7ad709045efa6e593d9be9b17b0f7

    Download Submit