Overview

overview

3

Static

static

3

1a89f8e569...18.pdf

windows7-x64

1

1a89f8e569...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 08:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1a89f8e56983a6918dedb511a880ffd9_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    1a89f8e56983a6918dedb511a880ffd9

  • SHA1

    209106cc25d265987860fe89cdd28f26fbb851ec

  • SHA256

    dbd07507567cea60bf475313dfb252e9d2041d09f0a21b9686860f680e131fa6

  • SHA512

    ac76f27f5e9ea2ce307034f2cf5f849a3b89dd9caeb40eb811e64cded2e1280c53b8d443645c857a5fd6fdb3ed4590d2571d9f54567e37a9578b77e55801a58a

  • SSDEEP

    1536:VFmNs8SQ3HjxCddQTcW7TUovslBIQCZFoyykJWapOtQQrGNubWdszP4eQNJ:mVJHbTcW7TUmsDIQuFoyktQ7uwqM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1a89f8e56983a6918dedb511a880ffd9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b4f9206fa0318215dec4c1a953b4a663

    SHA1

    d240160e644e5fb24aaf623008beb8b3fa1647ae

    SHA256

    1708c05d3760d183ad3332f102279d763b7e5f3b1754f1f7f025b58f41e6195f

    SHA512

    5ad5fa171f2d6d7877788a79f12a083db93a579df37162f7aa9515d8d9280d8b08884126156a670441f8df6e861e00440c93306d284ddb5642d061456fc6b3d0

    Download Submit