Overview

overview

3

Static

static

3

fac35a9771...18.pdf

windows7-x64

1

fac35a9771...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 17:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fac35a9771d19d074a72b270fcb1dbb2_JaffaCakes118.pdf

  • Size

    28KB

  • MD5

    fac35a9771d19d074a72b270fcb1dbb2

  • SHA1

    d03341663985e9ca76c17aef69bf5549ff867d75

  • SHA256

    46831c8ff3eeea7092cb879ecb415f3c2f8ad914c076b39f14fd282e1a5480bb

  • SHA512

    269d947a9b0352ef0f0bd3e16a7ef840af08a755a89c617b1d85d9a118fdcd60286f3c56f0eda5cbc630d330786b465558d36fc743eb9f5e45ae4ff3f8a9c598

  • SSDEEP

    384:W4vP/yN+F/RAJ7AV5dpIou6wXmw+sK/1gqlwkMDc2CUS2H4z/uclM/YK887zJoC2:X67AV5dpIX62n+sY1g6y3Ky7k8SM8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fac35a9771d19d074a72b270fcb1dbb2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ed7de8caa2f323eaea88206fc5e58c11

    SHA1

    dec4a1652eea4b69a1ee1cb744f5a5f6dba90e9b

    SHA256

    adbb9698b3ed1d53aa2b1f78b6b389434883e8d14e66372c9a30a6396427fbe4

    SHA512

    214c24c4fc93d788692d254f73b8bff7e1967f492bec11dbbdea1c53b8421099b57d3b448be46be2e3b0106c0baa8c8c4072c688e2f16c843c16fae9d2db3574

    Download Submit