Overview

overview

3

Static

static

3

f3d17dc8b1...18.pdf

windows7-x64

1

f3d17dc8b1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 15:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f3d17dc8b1bccd2edc5fe04b5bf9e1d7_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    f3d17dc8b1bccd2edc5fe04b5bf9e1d7

  • SHA1

    a7ffd9f47f13c056cc5fb2aecd744216ac958dc1

  • SHA256

    e98f4dbb7129e41638d47616ffcffb275c0aacd0527978db98d14ad87e34958f

  • SHA512

    f646403a2984668e2384882e2a8017013b41d3784e54bb6c590f4d3a77c4167a8751081fc0d31b275600c20fee8a67b3dea61796256f63c9b72ad14b0742c3e3

  • SSDEEP

    1536:gTq8o++hpkOWpRrQaJ4264liI81ji0xSU+jTd6cWkNpOPaWrcO3y88GfaC:L1++IOSJ4slvqji0xSU+jTdqP1cOi88e

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f3d17dc8b1bccd2edc5fe04b5bf9e1d7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2176

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bc1c11f396536a3842945877dac6888a

    SHA1

    c079ece0dec70d281bc01d8110f0f4fe204ebb24

    SHA256

    73a9513409c5a8bbe915fa2f12b44fb65155137a7b5f1b733e72d31130b7961c

    SHA512

    e29ddd6af68178690a17dedb0d4b4cd58812f697d4c1d3e8780f0f82a9f5b9fe21fdbe25a1a00de91513cd41e2196da92238ce4cfe5171b475ae6403312240a5

    Download Submit