Overview

overview

3

Static

static

3

d9ccc554f8...18.pdf

windows7-x64

1

d9ccc554f8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 17:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d9ccc554f81ab03bf6cae6199f2ffe78_JaffaCakes118.pdf

  • Size

    74KB

  • MD5

    d9ccc554f81ab03bf6cae6199f2ffe78

  • SHA1

    8476bf117c123c282e76b7f81a65e13aff927e80

  • SHA256

    f5336a5f75283f6d49fd9da9b3f930575733e4884814cdb158de513ec083641b

  • SHA512

    bf7550fbae1c9aae66cd1e4308a248ead920b08234f5955f99fb893e15b0e61f6b54e1033607a4f4ae3b6acdc26fc24aec12caa85ca3618378c519f0832d152b

  • SSDEEP

    1536:p6iTyD13pnACa775x+LI3Ky32F9JdVWgqMwCIe/6eWQpOCYSb:bT4C5ILI3/GvjTf6RC1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d9ccc554f81ab03bf6cae6199f2ffe78_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    df1f042103799871deb98b0f40d8492c

    SHA1

    cf82f390d71a6df635d376ecc12957cfdbb01b54

    SHA256

    c36b9ee90e8455d2cad561e1d3944dc3a761d74ad77474488ce8f434d0db9ac3

    SHA512

    f5f9874fbefcaab5f5c855fc34f666f86faa5203ca6363998f6a8ac0381a4082583ff1f420baed9b3b03b2c6c8abff422e340c5f28b76b79065e169e78e09e2f

    Download Submit