Overview

overview

3

Static

static

3

f16bb6cf68...18.pdf

windows7-x64

1

f16bb6cf68...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 15:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f16bb6cf686c80f0ccf3b3a89f8c3747_JaffaCakes118.pdf

  • Size

    105KB

  • MD5

    f16bb6cf686c80f0ccf3b3a89f8c3747

  • SHA1

    28c0ccbefa5e434952f176df987ff3182057da16

  • SHA256

    a4fd52e26b3f9947fb82357d8841242e2258bb2a2ce9ef9fe39db4612389e94b

  • SHA512

    b1145a017d17889dafb7627b7e7d057d51587a0cf736c7ce18017baecb070b35a1f5decc8bc362be0c2e18abe2ac7e3e6d28a38a9e9526fb0b0acd0d997b1020

  • SSDEEP

    3072:7UXHfvjC09fPZgdLPt1zJjdfq7X83NtZn4TpmaFmwkmSABL:7WfLCknZgdLRAAfZn0pmaFmI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f16bb6cf686c80f0ccf3b3a89f8c3747_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fb1b4511982e3d2cd00773b11389a560

    SHA1

    2cb4c4fe69562c4decfd535a6c8db53d9abcae4f

    SHA256

    b54f5332deef48d1b2c5a0e61ead66f9962709b2687eb9a4949c8f4e027e8df5

    SHA512

    71711f511cb1909140522cb9ff4e2085b9136d4d526357d220364a36ec15cf68aa708c5071c40073db9cc4b6dcd0462bbe75efbd2934e7a562a9c07d35897a84

    Download Submit