Overview

overview

3

Static

static

3

4bda106cfe...18.pdf

windows7-x64

1

4bda106cfe...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 23:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4bda106cfe2dad2f605d1796c985683d_JaffaCakes118.pdf

  • Size

    77KB

  • MD5

    4bda106cfe2dad2f605d1796c985683d

  • SHA1

    93e1cd0343269a112630752d511a102b5bf66613

  • SHA256

    b04a5d365309f74019340972d96e0f07583f0c394024f01c7a96995f4cfc62da

  • SHA512

    b9230a1ba991a546a5b7fe0214798eeb28dd97187d1a8568d995519b5a2c049caf36b9d5f9e5a43fa6ff13fd9e9992e5dca6f46fac0e5637713e294dc08a2ddc

  • SSDEEP

    1536:aEBGOMN/QZ3XhGWaUGO5gndCdpupzK5zG1XaP6c4PiS5WOpOwrKWQpIqNg99:vMN+3Ofugn+upzKgXagiS2wrjqNs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4bda106cfe2dad2f605d1796c985683d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9bea124cc0fbf5e49a1fa31a5f8a507d

    SHA1

    1760b383e250e514339835e5ea522e716a98404e

    SHA256

    838665d41974806c376e26fe4c1d5494b0c045de1f21b68989d22da8047dc6bf

    SHA512

    9f190193c44c69c0ab9344ed357cc163846a580975edac088e7f5e032ce42c6fb20d9dd8fc868fc3a14e74cc82e4a189c9838685049662474db004e075e82886

    Download Submit