Overview

overview

3

Static

static

3

00d1501353...18.pdf

windows7-x64

1

00d1501353...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 07:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00d1501353b207ea93ada475e15f12f2_JaffaCakes118.pdf

  • Size

    69KB

  • MD5

    00d1501353b207ea93ada475e15f12f2

  • SHA1

    df790e5afdcc67f1fd48dfa97f871ea5b04070e0

  • SHA256

    d99e7298333c8d59986c9c0f68e3db6a195adc549c6be15b84d6e4255b45731a

  • SHA512

    6f31a1933c3e36e5aba13b867c4e879950d14ebaa04f668864f6f8e7e81296cd8048d4508f895d909c4d25e69307716218b77c298689c4253d83303fa7cb7930

  • SSDEEP

    1536:gD0QV+Re2Ti3d7ke+T43D9UuQCDvk3chwbGgWspORGWpFwCT0S0j:UQDTi3aI3Q4vKLbSRrFF0V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00d1501353b207ea93ada475e15f12f2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    463290dd616de26e160234a1a21729ea

    SHA1

    9b015d6661fb0fc8c30b10f7e78676eeadf89169

    SHA256

    83a8b8437ebddfd2257e33f14fb307564fa1ace28a91b70fc19850f7d963fe05

    SHA512

    e34f5d0e1faab947c73abf342fec5d2292efb5c940c326e15a55bebe193bc3685db46a03e2faa833120ed43f4104b96275802e976bb850594005a9b3297842c8

    Download Submit