Overview

overview

3

Static

static

3

fb9ff7c630...18.pdf

windows7-x64

1

fb9ff7c630...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 01:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fb9ff7c630fa2c30e12c41771e019478_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    fb9ff7c630fa2c30e12c41771e019478

  • SHA1

    52933fc010103c9330e0a1f4abcbf45b0cfc3cc9

  • SHA256

    c92fbcc4a29134024924c09c9ced258da7b7ebf4d026bee45253da522795bdb0

  • SHA512

    5be1ef15c68e91a088434a6a866dc2e42ddcbcf5bd691214caf6701c4a716be3e92e71df9d1b0d97e157ebd856c4f313e81271f3bf893b043e3ca2ce366e3446

  • SSDEEP

    1536:6/XFJ9xOnOEz+2WS/au0MsdKPj/l4PTkbYruzHSfXJbWepOm1n9WcUf5xbGqA3:GF9OnOEz+WSfcjePTkbYrmoXJom1nY5U

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fb9ff7c630fa2c30e12c41771e019478_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1704

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3d5e5b3fae4b3807eabbfed809e0d7e6

    SHA1

    caec5289455a3fdc5b010215b9300866281f8066

    SHA256

    3941a24cda83e710ca18b7e714111d08e8efc60f871b7f52bc40403e2f28ee9e

    SHA512

    c1a180364581508bc6f362c5b23f3f5523c32ab59d6af4c3cace2e515eaf573aa011d53b0c85d75844c17d15e3b2188dd74a233527786b7d144dd777b40556a7

    Download Submit