Overview

overview

3

Static

static

3

10b6c03ca6...18.pdf

windows7-x64

1

10b6c03ca6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 21:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    10b6c03ca6505a55e8566edfefa16bef_JaffaCakes118.pdf

  • Size

    94KB

  • MD5

    10b6c03ca6505a55e8566edfefa16bef

  • SHA1

    d784072b4afeb5d63f316764d2bd2f938515f2d3

  • SHA256

    2dda53444b6b9f5ebe1d8149f8b178a5c7f49daafe09157502123470d67ddc64

  • SHA512

    0e56a411876de0735c3eab72fccb4f9c45f8e8547a95e60770f9d41a74c12acb943e9e6c8da23ad3e7511a217bec687d27264300cfc5399049a89f41743bc5a2

  • SSDEEP

    1536:D0zv3FD9rM9brvWFfDhG0n8r3eQD/nQ7OEXjLiQnmsS6TTXHC2:wF9GbrvQKbeQD/Q7OEXjLiQnfS6TTXr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\10b6c03ca6505a55e8566edfefa16bef_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2096

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b908c028ae353187955639dc1e45ba95

    SHA1

    6ab803314449cea207695c5c1b85aaba8cd71bc3

    SHA256

    18b3cd42a2faa76d0b31e1776823645036a4b646b08a694927a1a9d2d0a9e02a

    SHA512

    00b62e04baf51c16cd758e0ee8c03e4a58a03d58e78baac9e89dbe92dc982368f91e34d3bae57d760756657fc9788ae209fa10fe34f72e0f03ded188d76f26c6

    Download Submit