Overview

overview

3

Static

static

3

0bcd513e90...18.pdf

windows7-x64

1

0bcd513e90...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 01:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bcd513e9033e872aa59676d289099ba_JaffaCakes118.pdf

  • Size

    94KB

  • MD5

    0bcd513e9033e872aa59676d289099ba

  • SHA1

    598b3eb884e008de10a1a6fb2379ed7c38a38b44

  • SHA256

    d0ed7f988a6a3fc932404ddbac2f8986c4b196c90073f8b163655ca9ed630f5e

  • SHA512

    9b57ca2aa8225f5f7013c470170c85d9f07283aef892f73a540d106308f801ba1fc4ddb349adee9d55f0637ae89a48d431e50e0de90c1474655137988546c222

  • SSDEEP

    1536:cp1Tl5vDf0+znkDgwVArSeZI0w+W8HBHjGEIyIVZO19WWQpOCa3zIvHT5yP:Q17Lf1kD5QOUFjG6IS19JCEQH1i

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bcd513e9033e872aa59676d289099ba_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9787ff25ba9dd7a6529ad40377866433

    SHA1

    3a6eca729b1deab85df72017feeca3b2843221bd

    SHA256

    78e618b18cbf3fa02cc178eb5986c53fa90da732e2c459223cfb71777d4a98fa

    SHA512

    7a6ea2b854f4786a1aa6cde3ff43c40165a649b686644f440f548b7c11b9284e618af64407714ed8f151b0cb47d7be51c7679e8e04dfc14481077d1b6144c12b

    Download Submit