Overview

overview

3

Static

static

3

0f6bf2f0b4...18.pdf

windows7-x64

1

0f6bf2f0b4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 20:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f6bf2f0b42725ca327feff4e6897d35_JaffaCakes118.pdf

  • Size

    90KB

  • MD5

    0f6bf2f0b42725ca327feff4e6897d35

  • SHA1

    f3e6a914d18dc607292049b02bbc3ba993b0a87a

  • SHA256

    5043634b9ad1a2326c0fe69f5fac17d85650dd1601eb414591193e4f7ff2dcb5

  • SHA512

    a4a177b97d90eeea45293cd6bae54c04fa429e01ef148d30ae6abe5b9042e8065be5b41c223310ba8c4e5ac43b1049295891697a43ec217189177e43e9f44cd5

  • SSDEEP

    1536:JZkYkkTAcIt2lhPFja6WQUGaUlD2nnJs4/NMTG2FEBdJsTDMIM+/WvvO8L0bKdt9:4YkkT+EhPFjat9NkD2nJXFaG2GBdeToN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0f6bf2f0b42725ca327feff4e6897d35_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8cc25c24df6c7a37e84ae2bee1728244

    SHA1

    744e2cf9845beaf7a8e0c997432d34d115187090

    SHA256

    b266debb91e54d04e938ea4346c60ac819726e94d20421a67204e55007bc749b

    SHA512

    bfddea0bec9bc45b7ffeb6efd6afde582568d83735aaf878df20199f60405f2dbad602ec450740d319b624855910abd4a4d7fbce8984fd283632c0737d3fed93

    Download Submit