Overview

overview

3

Static

static

3

493b51f480...18.pdf

windows7-x64

1

493b51f480...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 09:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    493b51f480bfd8dc3ddc920bca6922a3_JaffaCakes118.pdf

  • Size

    75KB

  • MD5

    493b51f480bfd8dc3ddc920bca6922a3

  • SHA1

    bd5b54a3045880a882efe5c0e13d000a42e29001

  • SHA256

    27824048424bfcbe0c1a129b75daf6914529b22ebd47c1d96b41b88a1d6d6ba4

  • SHA512

    2267a248ae83fb24067bd64b24abcbc49040af028389589879cbd246407fbdcaa4757dfc68a299a0a889f07425e52a3ba259019b918f408d03885811a34c120f

  • SSDEEP

    1536:Hnypz/NGrOfffvE7QReV8hRHisf/KW69pjG866OesNW8pO+KAY:HypBGo3E7MwURHiQ/gzG8JOes8+a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\493b51f480bfd8dc3ddc920bca6922a3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d5cb9ef6a9d97503c9ee4167ca4d4d89

    SHA1

    1063a31210b500e19aa29d660a68780f1dbee7a4

    SHA256

    5e14964f2c1d3ed2d209fb35dfae03b164b0f39062cd4f240f39d2d52278d31c

    SHA512

    c8e5cd2fb970c9d4f1924e3f2dc2f5f5397333affc67019076c074a15d7092660e00e904f25c5b4f4e62daafb0aeb39861d72148c64656389fc4b41000cc7953

    Download Submit