Overview

overview

3

Static

static

3

0b4bca88cd...18.pdf

windows7-x64

1

0b4bca88cd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 17:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b4bca88cd2cb95a08e31ba841c452ba_JaffaCakes118.pdf

  • Size

    78KB

  • MD5

    0b4bca88cd2cb95a08e31ba841c452ba

  • SHA1

    d1894b60bf044c0de17f881c5f7c62d1b3541f3a

  • SHA256

    04e4cd9b2d7f21b7146d59207b3c1e34614c0a7f16b81e08e2bd014761553a6d

  • SHA512

    807f27843ca36920d9419e005e8ad03fae5a6702c165b79444ccfb6ce279dd067d9949a33607b5b66a6d18168d56c4038d8263800fa6fc1d561509bb2fd7f67c

  • SSDEEP

    1536:XYViZz9tQeN9dwT/AjZO2NSYjaR21I+Tn0Gd3cPf8ZzWu6YW6QWApO6yHz:rj9dwTYjZO2N2R2m+TFu8ZN64P6Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b4bca88cd2cb95a08e31ba841c452ba_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3b964600d9d2335f7b629d7beeb6627b

    SHA1

    6b0dc4862a955980474257aa101b5c476a7dc576

    SHA256

    97fbcb418e52321f773a28719f57c625ca53f9d09616df4930e896071e9452d2

    SHA512

    b133864b24825367b9f7cae4c44dab6dc9a1360201c12b86d6f653a245a62862c2caaa3ebe8491b06c10aaa3c4b5eb834635e3ae3e300d0a0c7024fd53cdb038

    Download Submit