Overview

overview

3

Static

static

3

00a8a3332e...18.pdf

windows7-x64

1

00a8a3332e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 11:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00a8a3332ed0dd643e2e345942c79adf_JaffaCakes118.pdf

  • Size

    353KB

  • MD5

    00a8a3332ed0dd643e2e345942c79adf

  • SHA1

    857e1486d7f016df188e303316b6baeee671be55

  • SHA256

    58d286e1d5e18d86bf6c33f8abe4bb59680342a2d7f53101bcf0dd681c96c266

  • SHA512

    62133c7fc96d90ed2c6e7729c6c619e1af4a18fca225eca1b57c46b1e8e5598dfd29ef9adaf0033f23f1b9576cfc0f3c55048a8e879e6dd588b628776d47fbf1

  • SSDEEP

    6144:updB34zboX61gcpN85c4fOprCeqQVvFm7Vdz7JY8XjW:ydlEzhpN85bfcJ4PJNXjW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00a8a3332ed0dd643e2e345942c79adf_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0a83e8ffed5f8933aa97b03882a1c0e4

    SHA1

    756d3752b2e12ebc0e8b41e3572a909ab32ff6c2

    SHA256

    84e180bec771a19b184f6dc1dfaed58ebb6e64418f3663f4cc51bd11ef1ed447

    SHA512

    78a0ec722dcd5c5187ffd59254e5e1e3f911669e53a5cbc25c5a94a6fddf262e41326482f6b14be7d26cc93227abae1d0cec8daa56b14742ddc919ce69f1a732

    Download Submit