Overview

overview

3

Static

static

3

f87c9d5ee4...18.pdf

windows7-x64

1

f87c9d5ee4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 17:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f87c9d5ee44d45f97fdab794e26b9bf2_JaffaCakes118.pdf

  • Size

    88KB

  • MD5

    f87c9d5ee44d45f97fdab794e26b9bf2

  • SHA1

    f73f38474fca4cc80089d245a4962a476df8952a

  • SHA256

    3b22548531a7e23c93fd8094e39880ec7b0818ecfa7c0cf263392243873679ed

  • SHA512

    c2d3c11dfcc2135ceb2cd8c15d2186199fdd3dc9c3101e2de9f2a8e31ccd33ce37a7000706270eb3559ca8b0e8c6fcee559083f926e31b78624b07559a878693

  • SSDEEP

    1536:1iQ8Scr5bK/kInc64bq8JuBfBc0UHUDACM7kSKAwmtPrD6WGpOKCW/nZxD9g5wMN:CrskWc6TR7q0DA1kSjwo7KZ/9gNN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f87c9d5ee44d45f97fdab794e26b9bf2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2ad54743830374a84c9c23be569d6fca

    SHA1

    a77b1a9822b91d7f91cafa5966ba2619c2896de4

    SHA256

    c00ed33e3cf1b691ec285cc2de3f2978cc77cc955b476ba838f8e2d8e601d1e8

    SHA512

    cac69bc2be0b69785d690b8de60ed62b4c0cbf3cfb670dd3a7c13667b4ddca319cf60f93b8b809eb440e3d2472d13a839e722727504458ac60daa9e6d505c0e0

    Download Submit