Overview

overview

3

Static

static

3

f5c0eec5c0...18.pdf

windows7-x64

1

f5c0eec5c0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17-04-2024 12:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f5c0eec5c0c08c10007e52f2b5e4d490_JaffaCakes118.pdf

  • Size

    175KB

  • MD5

    f5c0eec5c0c08c10007e52f2b5e4d490

  • SHA1

    d99aa499e9b872df8279430d124fc1364c656c20

  • SHA256

    2223854dab9bfa5d768a08c9c2972d8aebd1441e95bc9520eb91da1bf2194409

  • SHA512

    96df136d30bc1a45d349866d950903015414de6e04e2ce53f40a0a8d4f06a7d90e379383e71405eb13d483b07304b8fdfc93364bbfcd5a5dc8d7605b367be970

  • SSDEEP

    3072:gfRACpV3tbyU/xhUyg2rcd81ek3Gu2N8daTFoFjTb2I0U62Z0G/24uxt1DOHje2:DCpV3tbyKPUUN3G1NzTFoFTyI0hGu72

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f5c0eec5c0c08c10007e52f2b5e4d490_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fe84b4b16ed6af5aceb3c6da2a21cd3b

    SHA1

    b2ee7a9408e8a0d4895af48bb4936139a0791376

    SHA256

    a838d378c8d318a60e4990e6fd06d9eb8c865726a657ab106637be9e2680ef81

    SHA512

    95a797bd7b6b28437781be7470ddf0e6162c6bb8daa1df918e298c6f5673fbccb6dcedb76cf1dc22a3e65619f17d7366f43adcef5743a4f21fb85137024ed794

    Download Submit