Overview

overview

3

Static

static

3

00c15a1524...18.pdf

windows7-x64

1

00c15a1524...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 12:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00c15a1524f0feec76113d85e9494df8_JaffaCakes118.pdf

  • Size

    117KB

  • MD5

    00c15a1524f0feec76113d85e9494df8

  • SHA1

    5fadd67be0c74f0c2d23cf18e5991c53ce9bae36

  • SHA256

    ed00d92e7d8b9080937dd9a0637637657a6848d5eb1e5b5f5c5152ceb19762a7

  • SHA512

    1f023abcfdb7cbfee5651f306abf8c42cc454fd902791e1c0ac41600c7e55e7a74e4fad80a84f7aa8cf97d06a4a657dfe31d3bbe7fb56652d2bb99528bbc2d74

  • SSDEEP

    3072:Dyswid+LZli0+oR8xOc7zY67ae3PmkTxYS:DdmlQIw5Nvx3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00c15a1524f0feec76113d85e9494df8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cb002ca2d9eca829531a99013ef3f553

    SHA1

    3479b25e320c307367c3c74a58efe150a41c9769

    SHA256

    b0c67df24106c5bc409d6712580c510cfda0d495317d442ffd9d74980e2327d6

    SHA512

    e364d97ca9a2f54154b7ecdb07fb29d6680682a9190ef8c1b7e73d21170d32da04a5f177de31847d3c843b5839db62ea91438d9af1371aca07bc51d160b291d9

    Download Submit