Overview

overview

3

Static

static

3

03c2a7f1a1...18.pdf

windows7-x64

1

03c2a7f1a1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27-04-2024 22:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03c2a7f1a108406a3d71fa751982025c_JaffaCakes118.pdf

  • Size

    184KB

  • MD5

    03c2a7f1a108406a3d71fa751982025c

  • SHA1

    bab1d73ed9efd17d7b72cbdc45aa7f2d2093f5e9

  • SHA256

    99683ec87c04f042ce62fa3c0cd212430adb80d5788cf8fa0ddfda92e0de184d

  • SHA512

    9a15ccb3374ac9555fd8cf0bba5b1c49ea149f1296ddd6005c06036c06a0ecd005479c888e04811e77fbc662d1dd887bcc491a5cfd0a22e598373ddbc9a58ee6

  • SSDEEP

    3072:w52irbxzGAFYDMxud7fKg3dXVmbOn5u46KjnHfmw1gZEfp783mWCXTjSc:E2MKlWQ7Sg3d4bOx/mw1nJ8oJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\03c2a7f1a108406a3d71fa751982025c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    119d7209c9f94058bfcbb7f04c688b68

    SHA1

    611c28d446b0997e439841c0e0da78f811f483bc

    SHA256

    3499ba8426aed02b5068f2223c6d61331ed8757eaeae893db6a0de6e6d712ae2

    SHA512

    b44ba902344dbbec6f98c402c3ec9596dea488da92c70d03a52e2c43e03bdf5695484f7aa6fdf220ffe73d9dfbba06a1f4d146176383c05c5c722e9fe7c4cccd

    Download Submit