Overview

overview

3

Static

static

3

01d504c4f4...18.pdf

windows7-x64

1

01d504c4f4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 09:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    01d504c4f425393d26c5be9596d23e08_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    01d504c4f425393d26c5be9596d23e08

  • SHA1

    20bd8e5ee5f231137bf4957acb74c7cffcf4b440

  • SHA256

    1f2349c2e7458437db50b2664a6d4add2ebc482bbd51f156cc16c51d20b270f4

  • SHA512

    7e167b3471e6b637af5ecafc035c18f05ad5cdea2c90350a794db8eb3611d36ef6b5d9fda884e46a38840e72d81bbc98ce784df796663f9cccea313bbb4334de

  • SSDEEP

    768:RT7ioYJR/6viyBSv3onbb7XRydVLd2PT2v:RvGR/aBEebHXR+Ri2v

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\01d504c4f425393d26c5be9596d23e08_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eeab69ae5b854f2d530e8ef8ef3db5fa

    SHA1

    fa5ed5716cb3ad2247bbeb18edeac96a355fc161

    SHA256

    26acd19decf163707dd89201b008dd1c7b7d9cd1f3a963dcb6b4c9dbd93f932c

    SHA512

    5329dcc810ff81856d7b26a40fe70a80ee194f8f03f0069064cf807aa682bfb3917ee6845c69241d6e3f8cf065f25d5cac621f98036fd3b8d99dd672584b46f9

    Download Submit