Overview

overview

3

Static

static

3

07a130a28e...18.pdf

windows7-x64

1

07a130a28e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 14:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    07a130a28e0773e4ca0dbe57ad17d6e0_JaffaCakes118.pdf

  • Size

    77KB

  • MD5

    07a130a28e0773e4ca0dbe57ad17d6e0

  • SHA1

    d2270ec183f6b6fdb8454a56aade0e9088abd8b2

  • SHA256

    1985e3a6dac6efada80a044e5170c49a9ea4093b32eb43a66d4e6460f8cf44d3

  • SHA512

    abf55f2293d5aee3edfc664494a3f883744dcd3e74b71fb06ba827911b4ff228bd07fae9444c6b3c9c9a2832ca1f3f0af501819a982fbbd60473b741f7277289

  • SSDEEP

    1536:4dXUC/PwmeNduPb041XQzUctuCNvrbd7DjtvE7OngO5Wc2MEg3WOpOaZvWV7sriV:EXUC/4D8Pbj1XQ9tNnd7Ptc7+gUFEgIx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\07a130a28e0773e4ca0dbe57ad17d6e0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    544f9ae666a8afb16248d5e4d9bdfa5a

    SHA1

    3480ce775b874d5861c99d1bafa2fb6b49319264

    SHA256

    a2cebf52070caabc1e0c11a733afac0db09733824410065c9220dc1db0a594bb

    SHA512

    8e02df47613766cec9bf0bd3d51bb61dc7e7511b2a0d41ff3f3d42bd21af9ad51fda2a5453bebb530e8b9d90861d6bc61210f32f50581f3ddd716f10ed9f0725

    Download Submit