Overview

overview

3

Static

static

3

f0b2fc36ac...18.pdf

windows7-x64

1

f0b2fc36ac...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 08:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0b2fc36ac2de1a532efcade1117d48c_JaffaCakes118.pdf

  • Size

    96KB

  • MD5

    f0b2fc36ac2de1a532efcade1117d48c

  • SHA1

    03567215d55281f5bbdcf7b50deae1ab012a939a

  • SHA256

    f91ef0f152209664b91fbea3b6cbe1d76130e8c7d69ea9c41802e1450840919b

  • SHA512

    ac96097ea894e9719a52f311aa97c48796a00c4af7604894280320d5bb2181eb3daae43673416d2b242fe078985bf28f9153cbb51e7c69f5ecfec21b8a8dabd9

  • SSDEEP

    3072:O9PXIVZGLWJihkPLcm4OmFLhIYpb57QmkzseriiA7j:O9PYVcLkLdmFtI0576ro

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f0b2fc36ac2de1a532efcade1117d48c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4fbf34b8d11bd447000533d5dca437cb

    SHA1

    33f2c3aaadaf54b2280abdef895a7b4ce367d24c

    SHA256

    505f2b5b4c2554a3494a62b26b5d12412357c7d7bc871ffd3db77593b198e7b4

    SHA512

    653d7840df9e32b60ba190a2df1c4adf2f7d676c4a6bc0bc8047398e6f359d6513dc7b330355dc68575b678f13d0f222981f32b6a92716be71e35280a5bf39cd

    Download Submit