Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 02:28 UTC

General

  • Target

    47d58f4f8b2564793a73b83968983bca_JaffaCakes118.pdf

  • Size

    79KB

  • MD5

    47d58f4f8b2564793a73b83968983bca

  • SHA1

    eb6760ed55f345e656ebdfa6e4dc96afd2fc4dea

  • SHA256

    f9e4fe22e24b684c8e0b59ced75473aa65623339a5388fd679f34a0d561a83f9

  • SHA512

    e356c2c56041e9e6acc6d4b21c491dcb12400cbd00effc98e533b7a5a559520cdef82124259949591251d4dc11013d4af056b4e917f12b6182db550317281dcc

  • SSDEEP

    1536:JYBZrvkuzIlRkXPZoztTdNJjv60CNo9Hx9Yccq+gviMaLhrVCoYKY:orvH+kfZozt5i0QoT9Y9xgv5aLhrVCZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\47d58f4f8b2564793a73b83968983bca_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    8db39f859d7b07d4283f870aee19e782

    SHA1

    82213ceaedcf3f928c03e29c0418f6802f54e385

    SHA256

    1e184f4035b80a789ca5956cff25a8f8bf3e13afedc02b994dca7d89edfd59bf

    SHA512

    f4ea3c4a5b805f19795e1c3a5eb454e4b4096691eb0afeae5cd20f665254c11948dee8fb28d2c0c32a809b6459db3466a43a37bfd5e4a9a44987a873bbe646cb

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.