Overview

overview

3

Static

static

3

088c97e5d8...18.pdf

windows7-x64

1

088c97e5d8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    24/06/2024, 12:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    088c97e5d84317fc7c3314895ece41ea_JaffaCakes118.pdf

  • Size

    94KB

  • MD5

    088c97e5d84317fc7c3314895ece41ea

  • SHA1

    c654594a428c80dfe978c51149b896dd4b3a32e4

  • SHA256

    9ccb3f1d2e2d9ce4dcdd90df769a89d93aa63ee779132087e9ac3e77a4965ab0

  • SHA512

    dc9610e3331cc614691d540ce7db0e7459c8f9652fbbb1f2683c3afa05bcd002dc5a7a060824a67782b97ab42da7db2ff8d20ea96bd96d646a4125fd6817ade5

  • SSDEEP

    1536:bOuUHcxurvDyYjmhF744s7adZ8sKAjH2ItPVyvw85PrGFEOYgxgWLxC8sa5AgLW0:yuaVXjmhF744GYH2ItPVyvtTGWOYgxTZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\088c97e5d84317fc7c3314895ece41ea_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5bb8be11d0cef0f6befcbd5d5f9718e8

    SHA1

    a91da39125ee164c2090434a6cc58de0e514c5b5

    SHA256

    8e26f910054ba83844004803cb7293c0a2157806aa515c69a7d76ea226b8e474

    SHA512

    e1c88aa0aeb810f105a97791e5877eda9252685d811baaa63dab2a441382a4374eba6a68aa1e5143ba44c1a9740bd8816209bfc27c5b959ab43986156ebed275

    Download Submit