Overview

overview

3

Static

static

3

4b2f245d4c...18.pdf

windows7-x64

1

4b2f245d4c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 20:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4b2f245d4c87abb8bd6d89ad151698a4_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    4b2f245d4c87abb8bd6d89ad151698a4

  • SHA1

    d9b5338fefebe67042932aba4b1b517cc27b569d

  • SHA256

    60de3f9447daacc52ca3005dc90046ca8a444e82f602a9f35b6564be621b4a7d

  • SHA512

    afa9d77a1237357ef803cee4fd03bf73eef777d855cad8b6212e2f58f53d0b37c484d5edf8f8526220abd3dd79c74ed4358a2035f027b3149f4103a093b37e68

  • SSDEEP

    1536:tw1COXsDY3j1xMOyoawIYB85W9lR/AL1oosDvJ+WYpO2sAv81J4WeWk9wdmQ:acDY3jzMoZB85OR81oxP2rOJ4Wy9w3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4b2f245d4c87abb8bd6d89ad151698a4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    670cc9d2c78ff503a851b80f1acbc17e

    SHA1

    d0d3b4d1345f5219ce873d979ff210ed668a537b

    SHA256

    b3f450ce8e43798e67400a7a37a26bad1b0385f18a93f1b6bec391bbfe02eec2

    SHA512

    7e8a7a5d3c53f6dfc4abfaadba09c932f35ee7979e4e43dc425901c5127b14e8342154ffc4e5f7808f005ac5bb0d120661a9e05aefa4ea7d2edc747c9e32e4be

    Download Submit