Overview

overview

3

Static

static

3

00e0d78e66...18.pdf

windows7-x64

1

00e0d78e66...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 13:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00e0d78e66ae90daceff345afa725933_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    00e0d78e66ae90daceff345afa725933

  • SHA1

    9dac7817e25d70d254ef4a8cde4d03259fc142e0

  • SHA256

    d967d00b7cd3bd47280fa2ddd4d4cbdd76ff94902ef3ef028115a373e2be9b6d

  • SHA512

    db499ce247d1c3e3f962902f9f9cd0816e8e9c753807b501195d25dc57cd5be9e2ca4c545d20202275fa18ce569bec7e52ac35bc44400e3e55b934e8e937d834

  • SSDEEP

    768:/PBAXBymIJXGvcF+lQ9z0IP6EBjp+9NBzhFzwGyoFe2m1vaVQVMgiS12PBVPG8m2:6Ry52vcslQ9AIP6EBjp+9jhFMGyie2mi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00e0d78e66ae90daceff345afa725933_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e434a1748313c08031294ff88f5eea59

    SHA1

    f1107b0b3c4b68e841b4577b5e46f762f5ddf21e

    SHA256

    6a0afdc4a27f64722e5eab4c81e41a147805209617bdc2c1643830b525734574

    SHA512

    6682073078a8c60c5703cb9692f9637b697250c859b58a44450dcd8ef52cf5aab97c3293c00803fa3ee0ff6ab858771f050ecd362bcc6c103edc1af4e0b9cf67

    Download Submit