Overview

overview

3

Static

static

3

0fec00e532...18.pdf

windows7-x64

1

0fec00e532...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    03-05-2024 06:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0fec00e53287ce3d47f5730cd3b4269e_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    0fec00e53287ce3d47f5730cd3b4269e

  • SHA1

    162d6727e9f373816f3b10bc289b77311f415769

  • SHA256

    a3b558199f69d330d76168fbf27a9ef81034400b68f80f3a18282cf77fd60932

  • SHA512

    754c97168a7ae3bab76d5b44df297d8089f5d830e985eb3e7562644b4bdef33d98862a68aa87082dbd471cb91a819bdfd8773aae21cd6079b5aa65dcfce2b9a5

  • SSDEEP

    768:fXuMZmwgCLWarVE5HpuV6Y5KzZiZackJJf233PAYC4ZiMSJ2kLPK:fXFZmGWSG8V6Y5KzZKac65U3PAyG2kLC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0fec00e53287ce3d47f5730cd3b4269e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8a93a3217233164bd5480b3e6a59a89b

    SHA1

    b6b8981f68c96803fb0ce5e22d752cc53377b219

    SHA256

    8a6ff2c173fd1872904483d429e747b95cb2e56ed381cb8c6c23ece6c8475c71

    SHA512

    eda701ab7ee54d5a39a21e81082417bd7edf8b95dd0b84460cdf546f3ed00c054122cffaefd5fd8f34d171681ec0eb02f8683924d2fe71f88c457d2b80344c6f

    Download Submit