Overview

overview

3

Static

static

3

00adaab369...18.pdf

windows7-x64

1

00adaab369...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 11:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00adaab369b7736b813c1d1b228d6b3f_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    00adaab369b7736b813c1d1b228d6b3f

  • SHA1

    0afa6968954c575a7715d030808c7b447b9fdbc4

  • SHA256

    68b6f4d7d2af0866b0d34980e3029da59e079cef762924ac5971d7b4445a8686

  • SHA512

    c527e15ccf4887103faae13f35bf6724e93abfe9830ee5bcfd830c1196fa0c04e92b61f83040a13e3fd6210615445698f38a748eb140c48d187a8c62fc6a3915

  • SSDEEP

    768:pgXm1soN3qUNTk7pxUqmnt1TJ0ExVLOr2TJ/OlHlJIuh29zBRvXcBE53XuMZmwgB:eXSEKId2qmt1TJ0ExVLW2TJ/OlHlJIuN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00adaab369b7736b813c1d1b228d6b3f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2148

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7b52f99c5eb66aebdba76d5bfb7b6f3e

    SHA1

    92574f2a165b5873ecddfc26e71010bc34b6bce3

    SHA256

    39c01b69f7141be253b18182ad4ba1941b00d25f5691a24dcf7d042cec367bb4

    SHA512

    1f921cd21b8738ec3e72dba8ffd954efd48c8e5db2a5dd65d3ac5802fba28eab55acdca9f6aebb4ad357d5221861ec527eb3adf0183d48780ae6d3644b0a621c

    Download Submit