Overview

overview

3

Static

static

3

00a325e9d6...18.pdf

windows7-x64

1

00a325e9d6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 11:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00a325e9d6fc14bec1f5daf9a547a6e3_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    00a325e9d6fc14bec1f5daf9a547a6e3

  • SHA1

    5ec09e873c151fbb2dfabb9eb25d8c7c4c640867

  • SHA256

    af54ffb8c34b8b3d887e179df208a0c38ffeb6d299991130c3749fffdedf0a14

  • SHA512

    8b40a8697f0a9308ccb5dd663896c65c54044f44f4b8f18690ce13f0516185bea98d568e245953d9325406c1827ae4cb9f713f3debc41488a93005a36399fb6a

  • SSDEEP

    768:ZgGzpDOpvAE/MoBc2UHP6S3ypDOkAfSgejomd4MJ1+6MPWLRj4N8nu:aGFip2qSyom+JP0N4N8nu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00a325e9d6fc14bec1f5daf9a547a6e3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    872889df7be8300305235cf496bb6a03

    SHA1

    b7b0ca7f065d57f03cf742726a54404f3da48901

    SHA256

    4a41f28361e01a6089b2ef6afe765883905ef2df65f2908b710b790d0cfa6640

    SHA512

    406a8a395e41086c281baf1f974e3e6e6b971c937d2e0767a3c68d75c06c6a45c9e0b45632b3e9f6fab4894df3f516ab1740410dbf68b28f953a1b17ff2c9e81

    Download Submit