Overview

overview

3

Static

static

3

0d72a4cacf...18.pdf

windows7-x64

1

0d72a4cacf...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 18:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d72a4cacf2e4dda121d6841090c83a8_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    0d72a4cacf2e4dda121d6841090c83a8

  • SHA1

    4c4a4759f8b47a588c8aa2272a17425e7c495bbd

  • SHA256

    89ceb34b5d18b79e714a4df91d8c5bee21949beed75aa511f32e9f0c2bd0842b

  • SHA512

    9e6a61c8df78e8a97c173c2c752eb40970be78ad8bb14c9dd7c5963f7581502b9507bc361872775854de8c6de96e1c5312ceeaac903a60f562d79ac010a8c72f

  • SSDEEP

    1536:YwZUdjhGWAKrS07yOyjaolumS46U9u6I8AjvC1al+bgNDW6pOu26WI9e3uDU+y:/MY59jS746U9PAJobcIu2we3Uo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d72a4cacf2e4dda121d6841090c83a8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ad10beada547277aa8d7568219a60d8b

    SHA1

    b48ba9504740ee7c616f004679abfd384cc07cf0

    SHA256

    a0092f0bd2401f5881c03aa09a57698fbc945fec98eb1820e4c0735158b174da

    SHA512

    025f61a1ff925c359ec88c163f78a0fb761c8c5089a3750961c6c6ea06710645f65296a0c1ef8c4ef99a131f7db3a3b8cb3b5f443fe8749993217f738d1084d6

    Download Submit