Overview

overview

3

Static

static

3

00bdfdfa7d...18.pdf

windows7-x64

1

00bdfdfa7d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 12:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00bdfdfa7de0709e9b40d38795f80e7e_JaffaCakes118.pdf

  • Size

    15KB

  • MD5

    00bdfdfa7de0709e9b40d38795f80e7e

  • SHA1

    87f51b81a2ea8614f3199e6e4e3e87b542be3f3e

  • SHA256

    cd9b2c4dd366294467466e5882a9fa1307fef1c81e463617b8badd66c6267390

  • SHA512

    bd9f2234c7352d11a035bd34c07fbddf25272b3102b42a2d336a29e7dbff2b7e44a9e4ebb2da64958543ab5e3437586831c14fa658762f4a23e699bdb1403a3d

  • SSDEEP

    384:VzAoSz1ixo2qX15/OPfOQ6Uei0yqe/lniTziPsLf2MGnT4idcIxvbiQlCV4lCbAP:Vzoz1Eclt+fOQoiX7lwW02FnrdxTi/V2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00bdfdfa7de0709e9b40d38795f80e7e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    02d1441de946ad3b29c9d914c1ccd5ec

    SHA1

    71f36f2db210a1c93d859748e795029b60b02fd3

    SHA256

    31dfe141eac245597e4314b8d8618397997e3833b1ea872e11dfb32259f89f46

    SHA512

    b42d791206d41d4c2ce67bd35f1f7beeb76b4711903e16e84763323437e4d86999e1cc68b13cfa80188523b63f7032d567ad4c5f8b19ba4498842f064730f3a6

    Download Submit