Overview

overview

3

Static

static

3

0ff6d6ceb3...18.pdf

windows7-x64

1

0ff6d6ceb3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    25-06-2024 23:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ff6d6ceb302b21e91f788cc633a9f4e_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    0ff6d6ceb302b21e91f788cc633a9f4e

  • SHA1

    e42a6ea2eafa831b6b078df2472e0347160f8d3c

  • SHA256

    97f4b4b12a733255ccf4796ad3cb71d7678cbb2bf01004d1546f133f3f586710

  • SHA512

    52beb3137b5ec34e5810428f42c18cd40c15d852bd45703bc7eac29b62348f1e39c0280e74d749c5fdf0feba18c72e4bcc5765d10db61f5ef20e3c43a9c79b42

  • SSDEEP

    1536:HIH8SYbQQ+PmXxRJnAoG+J6QgR6i2Er0Dk3IW91KPGFqcDqm7NWepOyfps:HSYbQQ5hRulM6QlidYmNkPoqcDqm7Wym

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0ff6d6ceb302b21e91f788cc633a9f4e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b8138213f911917681f9c5f6d0c285e3

    SHA1

    9083a0573648f02b88e994351aedc600061d3060

    SHA256

    726655d574d0ccf03cc35cee9cd59ca60fbfbcff6b9dd45985cc6b155cd74a47

    SHA512

    d340cd133f3e51788e932b4220226ca1a81dbfe1882086cab92668b8c693ebfd69a7647fa343b706302a6da5aad9a5618497534634f3a28406661310db5a868c

    Download Submit