Overview

overview

3

Static

static

3

0ccd4be185...18.pdf

windows7-x64

1

0ccd4be185...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 18:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ccd4be18533cf01e214302122c0e353_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    0ccd4be18533cf01e214302122c0e353

  • SHA1

    2af69dad153ad42c529c20c8edd933dff08fe9b5

  • SHA256

    5e6cdd151cbddffb59c65a0433cb35d8586dc645ad7e1d8516e6ab697567d2ce

  • SHA512

    5a9b7cb5af72fe7cfd0034261a0080d7dce5104522d5c17e6af0ed0a9a79544fb07e0d413ce9650bd149d6a3ae7cbd656deea8387899f26a8324d53a34658f25

  • SSDEEP

    1536:OlM+zWZYS+pO4iokbeLimeOzMaUy50KMhp8MfQqJWcpOm9WNE5WAkyARGC:cOYS6iZyLBxFUy50KMgM4qAmBAAW5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0ccd4be18533cf01e214302122c0e353_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2156

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bb4ff74b02138c400887e4bfdd9f05f1

    SHA1

    22877db254eb1f47ad5cf125243e3e84504ed348

    SHA256

    4e2003cf81addff44bf348b3783c248dc552d66f1a8a6352011e425aab5e16d4

    SHA512

    85682563d3c610b99efae02470266beca50948f1c274963e70d04b303fbb8479eba6ae17788e5bf75d5e13d11b46692259095324b329350e1c1b5e34a4b4c9e9

    Download Submit