Overview

overview

3

Static

static

3

00c99f3185...18.pdf

windows7-x64

1

00c99f3185...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 12:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00c99f3185d8ae42b420ef55f7b33049_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    00c99f3185d8ae42b420ef55f7b33049

  • SHA1

    44f51bb77ae65a972d43bacd9c57fb04754419b6

  • SHA256

    bca55ae01a4fcc04729d7f97766146a4ea272602b2dae76946557b7c1a1aac6c

  • SHA512

    a62fc906ec0b7c6066cca59b5816d1e3c90decf36252010892ff4e8c1db563df22a3c4953fbd77f2f1b478a842574ce062af2e0d4954bf2cf22e16b2bcceb80c

  • SSDEEP

    768:/Bun+/XWFGTq12oHLEOLro+otuhavsiq1HPJVlGqm7uBDQz6aAFzhE5nXuMZmwg3:5wqkGW1jHlL+cakiq1HPJVlGqm7uBDQY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00c99f3185d8ae42b420ef55f7b33049_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6ff36145be2f3f49fb0588abba98cd76

    SHA1

    8836175ed73ffcdc10837d0910ffa57075e3d045

    SHA256

    1488ce20599b9602780c47a864084cf269b3d235668b0b2ecd88b81df89f5149

    SHA512

    4f8cf8ad3207db974950b56fb0d22c73b61713c31b45276b40e89091e73273e1db691752f9d09aad3debe9088ec292d0c549556a5e90962f2392bae7eec49f01

    Download Submit