Overview

overview

3

Static

static

3

0b251352fc...18.pdf

windows7-x64

1

0b251352fc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 17:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b251352fcdc03f05437ef9028be612d_JaffaCakes118.pdf

  • Size

    77KB

  • MD5

    0b251352fcdc03f05437ef9028be612d

  • SHA1

    6997b9e8f3b25c0b98a925d3d59b0298be0b88b2

  • SHA256

    5ff4d90cabec258b165e3f757a07e5a6e91fd634bbfb3e73ff53bc1f02b0a398

  • SHA512

    4d9222690daa0e53a22834e78e77061fa42302adc08bcdcbf9e57e748cd60318ceb443e2516438338d0aee3fb416303a1ee9def800bd970813b5199f803bc470

  • SSDEEP

    1536:DtkXtVoFRMUfklkToL0i9pyriZ1vO59V5EW2fdC082+kZbAXvpWcpOmaVh:2tW/MU82ToZhO5RCK2lZ0fgmS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b251352fcdc03f05437ef9028be612d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f1d5e618f70c086dc17181acf98b4507

    SHA1

    d462ab6e2eb77aa017eecdb7cd2326dcf9015310

    SHA256

    6621b2e3e16b87e589ebfe379cb126d3dcafecb20445d7626feb0c00f5be6bab

    SHA512

    f53cce32d3d2aaf3e762735da8bb7137564d8f4ec449e6821e917513610595601aa858cbb8c4523157c46dabacf03888a0151527d1d5b4015b4bda49516b1297

    Download Submit