Overview

overview

3

Static

static

3

0e1fe69f25...18.pdf

windows7-x64

1

0e1fe69f25...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 19:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e1fe69f25fc8400701a642712d6e734_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    0e1fe69f25fc8400701a642712d6e734

  • SHA1

    31d389d09cda0e1bb94136ff91e7c6b902c404a9

  • SHA256

    214edb1b9204a7ee38c8983676ec6b76862aa33498dbd77a7644c0f27d90fbef

  • SHA512

    6b2ba81a6cf20fab0d99111a30e9fa690bc668e325a76ccb86e3d899ee338d02dba2f37a2b51da81567fa2f4330fcdb81bf373f7a7d86e8b9fc7d041441a89d6

  • SSDEEP

    768:ix+nSlbYKJ1w2vpCXqcJqPKVc8QaK6e+4mnimkQq7NcF0W:7nSlbbwgaqMqSVc8E9pXNcF0W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0e1fe69f25fc8400701a642712d6e734_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ba0c297cdb941be023b898033d14a26d

    SHA1

    3c7cabffabcdf5471928159268159ee957ae0fa4

    SHA256

    7e0ecc447ed90ea48a66586ecfac5ac6b820f7ecda2119910fb1d509fb5946e3

    SHA512

    205474ad3630176b5ae277cbd4b24b984dc1fbab82d603e3f3ece943e29896921dbe2de98c3235567c443dab3d5344dc46fdb51d2d629e9b10e07e6673f80ad7

    Download Submit