Overview

overview

3

Static

static

3

fab7335ca6...18.pdf

windows7-x64

1

fab7335ca6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 16:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fab7335ca6c070eed7d1d39a8d2c480b_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    fab7335ca6c070eed7d1d39a8d2c480b

  • SHA1

    1837b60b9e0a68ba34de8da615484b3626e6ca59

  • SHA256

    87b732ec6d60918a82cbacdac43bd526e0748b0ed1da8c7ba391f4dc4bbf0036

  • SHA512

    0c88fb6dea9ab69cc77cd33a7912dcf76bf69368c13f72b5f64845b5c13699e159e9b568ca3b67f397d18a31edc9d1300f30059c9b59bfa13db1ab59645b3e3f

  • SSDEEP

    1536:92YT9uaXrBymTv7W+AVGHcETivzsJYqhwZi2L8z2QvQuWGpOKCWkZKyR/MP0A7HS:hThw27yVFE+vzsJSLAvQ3K0KyR/MP0AO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fab7335ca6c070eed7d1d39a8d2c480b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    be9bb64eea106601e0807a17ef14e907

    SHA1

    efeaf1c75f7be030dbd2bc5fec7153324f7b0298

    SHA256

    8c80a72d903b57b7473b61b23816354f6a19059a2343db408478ebd0c7936b61

    SHA512

    6d6b76d447cb5246baec98ac80d313bf1ee97bf61cc5892db27ee84d884940582ba90a83e9e41d76a072558ce53ee2e7a23c4dc95bacc98a159edc641c7b5820

    Download Submit