Overview

overview

3

Static

static

3

00bde2444a...18.pdf

windows7-x64

1

00bde2444a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 12:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00bde2444a3736cdba6a3d828e88c68e_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    00bde2444a3736cdba6a3d828e88c68e

  • SHA1

    db27cc1126e774cb33f38a1c4c208ab52e87cfc1

  • SHA256

    05f27b54dced79c0321f3855ade61cd1d655456a8d6dc418b7ec8b5129727ad7

  • SHA512

    f69418db6af9ee4fcfdc2324739ba8503c5f4b5b152dfdf6aee9f46092ed723268e224d231cb0a27da901d29441fe75b90c2115d16f4b4ce28d97c013d6a482e

  • SSDEEP

    768:PgGzpDFpf34y+Ocp8AoPgMbFg9USngaUTws6hsI+CaSC/OZsBVsGiZyeeW00/ywO:4GFxpfnPgMbkgasCaSC/O4VsGleeW5yR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00bde2444a3736cdba6a3d828e88c68e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    508ff9613cd10ed444bf4b4bdfbc1222

    SHA1

    c61305a44e2f717a93ed72f0d09d5343d25caed7

    SHA256

    e9a3664c3767b4dd3bb858de1bad1f3e56b37eeeddc2501afc2acd72502c7acd

    SHA512

    9ec274a93cda4868fde2151e07935ca3b148c38b689781e9c24fb5a19b3c5794d4726ecd21e27e3f894bbeff1285560ac812b7411ac4ff6160a589e547e1a2c0

    Download Submit