Overview

overview

3

Static

static

3

49c5b4f64a...18.pdf

windows7-x64

1

49c5b4f64a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 12:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49c5b4f64a4fd1f368fbc09b4b48509f_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    49c5b4f64a4fd1f368fbc09b4b48509f

  • SHA1

    830e425d734ef9d0c8b2792e313e805e0236b9f9

  • SHA256

    39d2e6b049289c6602383f977d06d8db50f9ed84d8027aa6d4285a8afe638fd1

  • SHA512

    abcf68fbc121059b96d4171ee02f72aa0ffa04f319cdc3b0a3a02e34d1ead921cec051141b71d869ab0b9925969a9180e014bda7c3aadf75432832926f444fa3

  • SSDEEP

    768:T/JL8YCjNryWXLHs1zTUq/RuYlWf5IXlnBtdVTo:1S58zTHRuiWRslnBZTo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\49c5b4f64a4fd1f368fbc09b4b48509f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2604

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fda2a7c36bf0cbf4d3b9d85996031fec

    SHA1

    213a891aa197cd5239fdac2bcfa64c24c6f64d54

    SHA256

    38e11eaede9351842e39d789aad5970483a10091a060f2481cc051143a3ad9f0

    SHA512

    98134c20524be38b08555d26faa046ba660e3976247af6bf631db8ea44b723e2023c1036ece67f59b9f4f0fb120a49d450c65fa735d6b420cefb9a1633b2a690

    Download Submit