Overview

overview

3

Static

static

3

0c3b315155...18.pdf

windows7-x64

1

0c3b315155...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/05/2024, 16:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0c3b315155376e8438ee8ce2c5148931_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    0c3b315155376e8438ee8ce2c5148931

  • SHA1

    348db6db8355c1a3633c76384209a22bad097d0e

  • SHA256

    1010b02e617209c514551815087d07e7eef9a5509a5eef6a3a2fa60a8e53f46c

  • SHA512

    3c11e7bef48a5acd724659fe16c731abd222e332f1ff277eeab2ee81b2675cef48555338e2e2266f26c2eb928151a7e1391cae67b62a6c15273df6bf84a9da70

  • SSDEEP

    768:RdgGzpDwpEAD4u2ppQweq+is0Oayc+Wpn5SCxvD5YQzudkFRes4tKQQUyGGH1+6+:sGFMpdhk5B75YQ4kFMfKQJyH3cDPV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c3b315155376e8438ee8ce2c5148931_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cfa2e9067132fa9d96aa3c7f77f6b6d1

    SHA1

    37eed5feec4791dc841d8aa2309d85e24a1ebdbd

    SHA256

    4ea3e6aa09bee8220e14d42617d8327d8a6495c398bd7232733ceed2a29fbe76

    SHA512

    aa6b325ebed9e27532dd6f808ab9a4efd359fce32e0776cdeb6c38715cb8bbdf685c7a5032a6db6184bfefe52e2e436a6afa455abdbc6d642bb7a94c8fbb889c

    Download Submit