Overview

overview

3

Static

static

3

f0cc51ac4a...18.pdf

windows7-x64

1

f0cc51ac4a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 10:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0cc51ac4a1be8941b66cfa3d5a19e9c_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    f0cc51ac4a1be8941b66cfa3d5a19e9c

  • SHA1

    dfa56f8cc33215ff1c9f4bc2b2d9806cd0c2ddd7

  • SHA256

    1c436024d4b0fbd12191735c4a67934abc444242132ccef1e8e46a9375a341db

  • SHA512

    ee7606c7d4d19de376cc5a772c0a4fa21cdc57eec194f4e81aaee85eb4b0a5e097442ab6e1d1d0255b32274c053d0d72c16f399322708f2d605b7b3f92cb8580

  • SSDEEP

    768:UA63fAeIPLuOJKo/Rzf6k7xoKww/QxQm9Pga9aQU5:UD3fAemZJ/t6kFSJ92Q0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f0cc51ac4a1be8941b66cfa3d5a19e9c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    29eb736b9a0e2dfe5b281aaa03db4ab0

    SHA1

    71033e4293f7d28ceaf2571a5a249401bd0c7103

    SHA256

    c67c4886ea5bc5de60823d1f0736526fd43272676e9320fcdda48c1c7a620c79

    SHA512

    0f2d9b628b6731c1f6ef0e14b2a525b97e1a4409ce60601b16375efca33695d1ef2820f28afcf022ffbb07666af44cd49db14612681a53b2427bae3966db761d

    Download Submit