Overview

overview

3

Static

static

3

8b02c9f5d6...18.pdf

windows7-x64

1

8b02c9f5d6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    01-06-2024 16:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8b02c9f5d6e0ddfe0849b7c5b32110e9_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    8b02c9f5d6e0ddfe0849b7c5b32110e9

  • SHA1

    65a9367c287b9fb81a05329bf01adebbf11717f1

  • SHA256

    b871acd4158bc9e6e796b69ee3b68a1a1d5aa01704e728e158e6b986dcfffe78

  • SHA512

    32a2731db91641174ddf446380949b45328b18c17b0ffce32333fe494dcefbcaf8b66c9780f54efc11ed561c9ded7e726fc033e294816500ff301daba9c9093d

  • SSDEEP

    768:PgGzpDPprBWGb3IiTXOdRW81GxBib1V/pQMPHtl5FpqSzex3YZJOmqz5O6D:4GFTp9BSv/+MPNlzpqSzC3YWmqz5HD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8b02c9f5d6e0ddfe0849b7c5b32110e9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    03f92403cde208027b6e4cbaf6b4c2e1

    SHA1

    520ef11fca0ed2ad4daaeda6a733129cea9ebc9a

    SHA256

    ee496331468a9ccb3c829e605ca974a4c469861b57b030d33b8372f32091be32

    SHA512

    2482567d17609ef7bf36ad6aec6c940c27f322be7cf685f02a972d7514717fa1b8891cf19b9f254fcd10cc9b609b2dd065f3c65ed04774ba99916ae450dc7d61

    Download Submit