Overview

overview

3

Static

static

3

096737af71...18.pdf

windows7-x64

1

096737af71...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 15:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    096737af7168b353c571d54a873d78d9_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    096737af7168b353c571d54a873d78d9

  • SHA1

    516747c455e95b800bdcf5227497e38259620579

  • SHA256

    25bb0a2d86f7ef8c738aa7750b1610e251fb08eabf6889832f9a0fd25835b0b6

  • SHA512

    e8834d26f4082e7ba076403868ae9cef178534ae353bc51d4e02cf0c1fb9d68fa664e44d84189f22ad0badd7b2fc3ef5cfddc58bf32158987f166648bbef6849

  • SSDEEP

    1536:RC3uEU3UUKlzTbAh9hurSEDOdWRPyNhnkcWUpO7ypK/amPId:0eEU3hODAh9wrZPyNhnk/7ypK/Du

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\096737af7168b353c571d54a873d78d9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a6a471fce5f2bc527fa2221bb2c7f891

    SHA1

    cabea3bf1b79bca959adf9f2fc7ed189384855c3

    SHA256

    e03bdc17f9aaf8aa33d2de238169493db36c77c14ff2972946deab98e16d1443

    SHA512

    b824822d3f6329a3a9e6fc406c99b0056fa2c42dd730c1d61a0d1f67d32afc3b6b7269a28a6ed4e4fad9d6c12ac4d545b8409ca0fd65c7b315f80fda677ccb94

    Download Submit