Overview

overview

3

Static

static

3

443ff3bc76...18.pdf

windows7-x64

1

443ff3bc76...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    14/07/2024, 04:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    443ff3bc767fa9a76e121b5a60fbca9e_JaffaCakes118.pdf

  • Size

    80KB

  • MD5

    443ff3bc767fa9a76e121b5a60fbca9e

  • SHA1

    c2112752fb988c70cbe6048e88875e84bbfe2da0

  • SHA256

    8d015e08b7dccd32bd8375b12fe3c9f175f74cd90f2e8b0f0d8c67f57250597a

  • SHA512

    ff697ee0a3b6a488fffb430b70f50123eb56c094ec6f4c3352c65920fc6cdcd733a0db7230588a5abab1b1d5e2dc13ac4d1593e711b0195efe8c17dc4d779895

  • SSDEEP

    1536:OOg/+0k2XsD9JuBxZSwtBv4XgAapX6zVBKApL7Zfw0tj2NXoXCWKXhAcj:yGwXs7uzja60VoO71wwSoXwX5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\443ff3bc767fa9a76e121b5a60fbca9e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    efa21564484e024830acdbef60f38b71

    SHA1

    dee2ced99cf3aec40c7bed50d63d369f5724156b

    SHA256

    36d616c5627078ba39e3e4bbe6e8b022cb6ac78d87f7c8b67232cc43cba6397f

    SHA512

    1521936bc99ac248b862ba1305a855d0e53ee150f2570d1511e3773b3bad15a1dab4eb01d412a65d6501cb897dc69a49f15cecd6466f672ca0c05199b1b1261a

    Download Submit