Overview

overview

6

Static

static

6

39a2eabb03...18.pdf

windows7-x64

1

39a2eabb03...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    91s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 15:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    39a2eabb0388b982ca26f2543965e37a_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    39a2eabb0388b982ca26f2543965e37a

  • SHA1

    d054afc3a8f14d356e99c7155929a8c98a807ce2

  • SHA256

    9ac842968e846d9e31cd2042211c58d6995a64f139549eee825f0243bf214851

  • SHA512

    0454f33dea52a0621b543ea6c5d19a467335d1abcb682625cc18d66f9d7d456aac19babc332aa0a88085351fc2dd8285f0f463b0f954ace0263fd89fcf37648d

  • SSDEEP

    96:bONLKimxdw+osJi5+fxPpkcyNAirg6zKD/J/2ddnEjNyM+akMN:bONJedw+jJi5Cxx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\39a2eabb0388b982ca26f2543965e37a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    038e8e7c5baa859e5a0dfe98edb5ebc5

    SHA1

    eb14e764e0eb6bf7ff13c4a32804e7cb9c55989e

    SHA256

    b95f61d52b0d977b1895a29afd232ed136249db2bceb70380d157da49a1d9e7e

    SHA512

    e2704d4e7f8620f9ad9c68872526dbd9bc0ad23d1ae7600e11c456db4b33b8a41f6b9ed0828bf77cb931039153b3e0e6987098efcef5a052a8e59e75ddce5c8e

    Download Submit