Overview

overview

3

Static

static

3

f0bbd32e4b...18.pdf

windows7-x64

1

f0bbd32e4b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 09:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0bbd32e4b1ab6d69033b7a630374dd4_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    f0bbd32e4b1ab6d69033b7a630374dd4

  • SHA1

    444d9bc84ef2006045ff41c4094950bbda93a89c

  • SHA256

    4f4ec777c1f49e5b514072fe3d1ea54b2875a70536ec2358da7230b095960e23

  • SHA512

    e0e0f550daf847f05f639ebfe88d5600ad8f581666da5b46226a4b52b740a03838be9642cc9173ca264cc5c514870868a39a07d547349d88db51ff8f49e8267d

  • SSDEEP

    1536:x6NjnCcUVFtezkr0FakpqtUthutJvoy2EcBxvuf1dWspOL4Wvz13twyivVm:CnsV/ewYZq6t8tJsBsKLP3zi8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f0bbd32e4b1ab6d69033b7a630374dd4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0f6e6983e0e6f092a6604fdcb275c0df

    SHA1

    f5e20570ea08db2aa3b801c0dcdad446ead6309d

    SHA256

    861ad1848d771b95510d02057013ede4838485c92d5bf89e110949100207c6d8

    SHA512

    5462273ef7c7e10a44ed851ce7db5ed90ac44be6316df29d793c0947031ac2540a811334ed2b47fc107801ca9d89eb95160c010030b8577a98893b67a9b102f2

    Download Submit