Overview

overview

3

Static

static

3

1cccb4fc89...18.pdf

windows7-x64

1

1cccb4fc89...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 07:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1cccb4fc89099687fd31879d5da3e81f_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    1cccb4fc89099687fd31879d5da3e81f

  • SHA1

    25ebed23b03bb36bd5dcd511166a9c559fd546fd

  • SHA256

    e97fd4ba18fdf054f3edd85dcf580bbd7def04c7c5b863cda8ef6f5d81aca5dc

  • SHA512

    4bf9b0f7442cb97a9ad04a3fb3fb8ba0532f6eb607dee0b302ea3059f65583c4eb4d2ea5f89b4bc9147bc8d3959e512bbaf11011844a99c324ce8178efb46e0f

  • SSDEEP

    1536:zxvya7GppWhWVP2VXpDU4wUjzgJ8W9wkP9JoLNy6QQW8pO7bSam3UWIqV/ZfsgT:1f8o7VXFDMJ8WOklJo5y6Q77i3hVhZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1cccb4fc89099687fd31879d5da3e81f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1cce37d67cdbfcf20e8008134448b95a

    SHA1

    a281dc6e4ffe458e372e86543cc4ddce09b2a888

    SHA256

    798f4d932e2b3b8ad3b723648e781dca7cb4ce20c4cdce72fc963d8f24bf6307

    SHA512

    e0d8fd102cec331b24f29f708dd9f55724dc255d5eea832625651993695bde72ca68103ff38b08467815d410be957b56edad05f339fa866eb6f91c10b197402e

    Download Submit