Overview

overview

3

Static

static

3

02aa90a3d6...18.pdf

windows7-x64

1

02aa90a3d6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/04/2024, 06:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    02aa90a3d6f22e7d2f1da6033aa3615a_JaffaCakes118.pdf

  • Size

    187KB

  • MD5

    02aa90a3d6f22e7d2f1da6033aa3615a

  • SHA1

    c62a0bcc73b4e5c00b56f4acfcc8e79fa3c1a70c

  • SHA256

    4c61f8d20f2b5d15a0e8929b928c7c4acdce10f24a978072ef768d92f505ba87

  • SHA512

    b3e8c3a4b8140fd3014b301b51af2a8a880f35b5799c98a00925f01ed19c3d3f3af8f27411a2516ad08ec5a761aa72904f6c1844eb7b042133e4d2def0098255

  • SSDEEP

    3072:Z2irbxzGAFYDMxud7fKg3dXVmbOn5uq6Kjni2nGX1G/3vFYfIjQS1olISs:Z2MKlWQ7Sg3d4bObi2GBwUSuW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\02aa90a3d6f22e7d2f1da6033aa3615a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fd5355bc58800121bff5b65159fed9d3

    SHA1

    509cb6a37164e4d8682bc00bb62e498ec1304409

    SHA256

    56115b50760e99a9e8234e0021e3d6e3097c7b0997939d2bd77e7db237f516a8

    SHA512

    405584c83b07c8ab4e4e81473874d70cda62b22834e67329797239dd7cbe030d3e8356269d4263b28b71450ae8b0cbacb2c141e4ff25f0fcca5e94d68ba2e923

    Download Submit