Overview

overview

6

Static

static

6

0f9193b818...18.pdf

windows7-x64

1

0f9193b818...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 21:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f9193b8185b8149b99dc56623843d5a_JaffaCakes118.pdf

  • Size

    64KB

  • MD5

    0f9193b8185b8149b99dc56623843d5a

  • SHA1

    6cd593b91b3a83e8a27499cee0d4d24d61bd5501

  • SHA256

    bbd5b5720553c30e1fbd8488f4f16343c03b54cfb1bbf9eb5146841801c214c4

  • SHA512

    6e1a449ee721cfee9cfaf4c0bd3d2f6e22129a2e6bffb72c2c881ad2cea4235d93d80fd027e39c46c9ae101cf98d8984274d72880957edf602e8a67317f2cb44

  • SSDEEP

    1536:yOUcAMwrtQvvXBlUbRWOpOwrKWPHOjWLkDG+:3UDMwrtmvXBqywrVyWLkV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0f9193b8185b8149b99dc56623843d5a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    93641f6711420c2bb88b4438fb2388a8

    SHA1

    817c8fb682306595a4b48cafccd471eb1d761f09

    SHA256

    dc7df74a1061c765c87e6e58a04b39b15177c413bd60ce6e599c472609df2f74

    SHA512

    da01c93534192eaa61cfda32749cbab1c89aede47d0917f17cfac9c6afd439e4413bcf3849ab6782fafa9177366cdec4ce2a44632b3b0378ba5753a7a1a9f94c

    Download Submit