Overview

overview

6

Static

static

6

0bf428ebc9...18.pdf

windows7-x64

1

0bf428ebc9...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    25-06-2024 02:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bf428ebc952ae459413a48b004df81b_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    0bf428ebc952ae459413a48b004df81b

  • SHA1

    26be0862e80d26756b3034b32b5963ef002c09c4

  • SHA256

    10926dd2151221152c7942ea5a4d6842597d6af690e80a05af4a773ff4ebde76

  • SHA512

    59bab6018e4f7db22269bff5cf3fa3de84d7a1e17feb8bbf48dd4c5f24cc9ef312ef2656a92c4f13961661650c2a4832105c0191ce6e8a5bca77fa0648cc8bf2

  • SSDEEP

    192:xPz4ULMxLIKXHsfyxI3NZrgt7kXY5VQmlmVJ52gAb4EVAAIPTNDN7oRrKQ6+HrSG:xPz4ULMxLIKXHsfCkLrgtZDlC+b7IPT4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bf428ebc952ae459413a48b004df81b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c254fa828517899a04abcaf84311f953

    SHA1

    5b035fc2bad776e5929ae372342a3d5078a5999d

    SHA256

    9b7388df5360f342b43982cfe26ae1355f9f517f0d22015b3a16ea1d54d9086d

    SHA512

    084ad4af6abb2f95d1db4898c5cd487466d27ca405c22129439899a189e1a9d1b87a3609cc27daab6e28de44aecdd47c81bb9477252ab06c845508faed66d557

    Download Submit

  • memory/2424-0-0x00000000032B0000-0x0000000003326000-memory.dmp

    Filesize

    472KB

    Download