Overview

overview

3

Static

static

3

fa67e95f2c...18.pdf

windows7-x64

1

fa67e95f2c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 13:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa67e95f2c44f894928768ec9a6df33b_JaffaCakes118.pdf

  • Size

    91KB

  • MD5

    fa67e95f2c44f894928768ec9a6df33b

  • SHA1

    2154fb2cf9446839285cf06577d2b38b5d4bb921

  • SHA256

    11121b6a3efde804830fa701a1bd2fcc1f6bed80f22927b89c5ca3a21bf1f2ac

  • SHA512

    1da9b7155b7a6ca39cd1141e9a057943758098d97645af12c4fa0c3a882ec82061553b42ad6cda1c2bb38766fc4044e106baa94f0be9fe6ef68a05da640714ec

  • SSDEEP

    1536:RhwRvZW5nhHWNugGAjlxHqHGoErZAL9Bf8M2NvAviyow3WCpOViYFqhZWoKILCbq:3wRvZW5nhH+GATCGoErZwdOYvijViYF+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fa67e95f2c44f894928768ec9a6df33b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e94bd4af3d8dc75c90d8439c355170cf

    SHA1

    a2cc884e50df61292e9cec4da15c6d4058119f22

    SHA256

    6c2358c029346f3ac67bd3b1fbbb73e907837e5392ab3411d276ef16792d4e95

    SHA512

    7b1b7c2dd228f4b11c5f3085c0124f75202e48b90b672d200c71103b6a672c25e4a2e0c5d80ac6aedfbfa09cce7c9b405558c09e3ea7e91652a07098c7c14642

    Download Submit