Overview

overview

3

Static

static

3

0b20cfa4b8...18.pdf

windows7-x64

1

0b20cfa4b8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01-05-2024 05:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b20cfa4b858ee4c96546003f35294f0_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    0b20cfa4b858ee4c96546003f35294f0

  • SHA1

    52334797fcea4e1ec614713fcfbbf201d8cc22eb

  • SHA256

    fd99db8edc389473b48668993447b4440ceef67a5da9b81654a2951fd4973155

  • SHA512

    ad51bf5acd4155357d64aa982d62a013c25cad4c683208ed8169ea25420af250087770be8b86053ad258e54006b0eefa577caf41c9f18c9cb441d2884addec93

  • SSDEEP

    1536:NGFfpdO0CcUVohVBMd9I6UnnvctXi/MEfSPSf5aB5OUneYYfDkV2b5KBFk:QFfpdO0CWheEaPWOADkV2lKI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b20cfa4b858ee4c96546003f35294f0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3dcd48f7ec25a72cfc75bf9a63d177d4

    SHA1

    70ccba8764bb97e2eb24b04d08ea6c9298943129

    SHA256

    3e8c7432d06f49348ec5efc08099a34fe95111775577917da47fbc60ed7a012e

    SHA512

    2ad16f57ea3db01efeafbf26ef630c90d2280c1c15c46c3ec4c7caea42ab0b679764aa8bee8f8dd58425cd531b63ee4e3afd4c86b60761a7f86185c347a161cf

    Download Submit