Overview

overview

3

Static

static

3

d00b25c4a8...18.pdf

windows7-x64

1

d00b25c4a8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 09:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d00b25c4a815b1328136b381c6f2df04_JaffaCakes118.pdf

  • Size

    79KB

  • MD5

    d00b25c4a815b1328136b381c6f2df04

  • SHA1

    1e06e5974dca21f9a589f4690a1911a51798b256

  • SHA256

    bfa0551153853194b7ff9ef4d91090a797f33c7b8657804f6eb00ace7c596fad

  • SHA512

    bfef92139107d3696b62f1bf67e29e16b512a1751abe326fad71eb9661b1ef86c831fbc5f755b03a226735c7727fc57aee380465b49470999246ef48654e9824

  • SSDEEP

    1536:sqM9lZI0aUJGul178qBOZWqDD86lyHd7WOpOaZ0m/L+WqwD3GesN:yXZd/YI78LZv86lyaaZ0m/LPD3Gx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d00b25c4a815b1328136b381c6f2df04_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    101b4889095b0bb7416f6972922d1841

    SHA1

    5ff86b72d1464dde652c7e2e2c9dbdca6369a9df

    SHA256

    dbbeaa13a2f91127bf630b68178cbe2add494818d2375a5dd476fd9619a4441d

    SHA512

    a0401673d81533d11708b96fee621005a412ea1d8198eaf8895d6ece46e1353e1a625ba9b44e48e47551de6da7e6875e782125ad169335558126002a77c711b6

    Download Submit