Overview

overview

3

Static

static

3

09c95e8279...18.pdf

windows7-x64

1

09c95e8279...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 15:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    09c95e82797e9c3e6be87af0c0f5cd6f_JaffaCakes118.pdf

  • Size

    91KB

  • MD5

    09c95e82797e9c3e6be87af0c0f5cd6f

  • SHA1

    0dca094b0bc673bba2789ab7b851bb6ed7195f34

  • SHA256

    e4d8e1bad3621cca700e98d3f1967184c689d8ac33b0060365b957b8f052e87e

  • SHA512

    261628daf53d48ba41073d762ff49146350057314abc223a7e940a840c909f6ac29a79cbac5bedce2e4e6972b3895629a3413ea686d9b466eda49b868245c3d4

  • SSDEEP

    1536:eVLeJJH6C5xf0W2ksOUDthgiARjm0XW+5v4atTTbWQpOCKIc:s4HNxf0W2k3UPWJXttTTGCi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\09c95e82797e9c3e6be87af0c0f5cd6f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    37b9464edacf69c9fa9d13f9c373378b

    SHA1

    891944ea6e1f9c5610cee0a1de97f5c3074f2b0f

    SHA256

    219ac9d218270874d94f0c05325c8be4f95087ba519859de2b3735ed1f499cb3

    SHA512

    8e12e6897166c475fabd9d9bda93de7985c73b64da52f1e60b0f8ca51783f0889a3103ece9a3d0a8dfbaf8a8bcc45c3ba5a30a1d3ebad8d25e15284de6eafaad

    Download Submit