Overview

overview

3

Static

static

3

01175bce0e...18.pdf

windows7-x64

1

01175bce0e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 15:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    01175bce0e802994e676b93b19dc218f_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    01175bce0e802994e676b93b19dc218f

  • SHA1

    e34a09aaff6337c87b12c6d84cbd604986d61d0b

  • SHA256

    666f3c8585c020b81fad3d3509e4d1e8aa464eb45a8ba7dad5a57335dc0b760b

  • SHA512

    733a4cdd4f561e6e073acf00d0914f911db52afec8bde13e858b05d50a8379f1a88b35e62e248e3e4cb1169943b4d2b863d3eb808e49898ce94cc5afea630abf

  • SSDEEP

    1536:B2/KlwveygvL51AwZry1t5yup7q+vA65o69Yv1N4WaihqDH7mJXlBGmm81tGyUK7:B2/OwmXD51Amry1tgwVvA65A1N1aihqw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\01175bce0e802994e676b93b19dc218f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cebb12535c139ec08d37c3b36a11dc46

    SHA1

    a8c08e1f7634197daaeb8bd27b29580e46a47d15

    SHA256

    d748e0a0635d2c068fbcad56c130a96685d56364524a69958fbe28e276a326ad

    SHA512

    c09d654061bde3200a1aa35cb6a4659ba27248ac70e98c89dda7fd8e818a00f2faec387e33417322f546225959d84de38f7ec6f6e05ad3021c7b4e8ccd9030be

    Download Submit