Overview

overview

3

Static

static

3

f771ef19dd...18.pdf

windows7-x64

1

f771ef19dd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 06:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f771ef19dd960ea0f61d0084fe37fb98_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    f771ef19dd960ea0f61d0084fe37fb98

  • SHA1

    990223c7c68c883bcc36b2c2d5148b18081bbd4d

  • SHA256

    b615aa3ae53ccb349f29b028302038e4da86c11226d94e4eae3a05554bed6a65

  • SHA512

    bfaaf7385d480821844bac805800f09496e89293355279f902847c79e93ba05680f251c84bf69c2b1d73a59a65c2095b1a5c6d7697174f02f36ab5206eacdc8e

  • SSDEEP

    1536:kef6TuZYjoHzkrfDZilEbmKtBmvijDtDvIuMfFWWYpO2+WF24OekeWDRrntuPpRW:iTu0ZfftwqtLYdd2OeWD/uxRW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f771ef19dd960ea0f61d0084fe37fb98_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a69856b8a3bbc31c5ecd42a3ad1bab73

    SHA1

    1b0db6ebf8ae39292089a0072bd4778777e750bf

    SHA256

    5e65ad06e00dfd1fdfb58b6a7be197176f04f26dcc0c2d25a41055a5ca449ad7

    SHA512

    454d935047d8bc3252ed04789d6bacbc28194c57d6904ac734ccf3c6e16a9b30439f7c23246606b2c777f8e5826ea0bb2491bd12775b864d103ccf8320b5cc68

    Download Submit