Overview

overview

3

Static

static

3

38f05df7e5...18.pdf

windows7-x64

1

38f05df7e5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    95s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 11:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38f05df7e599716443b665c840d172d2_JaffaCakes118.pdf

  • Size

    85KB

  • MD5

    38f05df7e599716443b665c840d172d2

  • SHA1

    b1dc0a11e7b245a0cb06ba3a9f8669a63980d7a5

  • SHA256

    97b395d7a4b97e71d3ce840146b3f1e2c749cd95f958329a9124e9a1b6dceedf

  • SHA512

    0d092f4b9c6478395470b4aaf10d1b192397be1cd15e51ac85403ddc386ebe435765bf1c306f9575e935bbc0126391effcfcf7e364bc5f229d02023d74f936b3

  • SSDEEP

    1536:Af7sjuhJ75dQaPzBcbT8kn32lJSjE+MNNFolW6pOu2HCAMmxWGuexQRAhf:tsvhtcX8kMJSeNNFu2iAMm+LRo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38f05df7e599716443b665c840d172d2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a44387a3e8bed88855ac1ead58bc3cd0

    SHA1

    35dd90f46425166829352f6de5d7dfba80046b03

    SHA256

    b61c7e027eb2053c5f4e243bfcac42935983ba7df272810fca2cae1d6d194073

    SHA512

    2ea37cc6b87cbe975ba04980d34369644f1ab7084718e0a6a075c890128f3c9e582f2011a2b9e1748d155a819c8dd402f3f3157d9090b696bdb75ed2a437d912

    Download Submit