Overview

overview

3

Static

static

3

fc0122aa13...18.pdf

windows7-x64

1

fc0122aa13...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 05:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fc0122aa13f254145ab8b77aa9f4d1a3_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    fc0122aa13f254145ab8b77aa9f4d1a3

  • SHA1

    25c30f21ce2b93e00e2fefb0aacdb7c54172d84b

  • SHA256

    93ba7d7f34186f226a956dfae2fc5b863ed6ee89d6e25e65b807db8947e11023

  • SHA512

    80c5da18d81ea88d0fed2d4b7c73c59df75cd6f03f188994078b1bf91e45868c0c39d80ae21bf41c963488356c9313b75fe4a92a8ba3091fb7e4cf6953ff8a56

  • SSDEEP

    1536:H9SpR8JjAzvfkx+J2uZva1GcZmGJY111YBaifSBw:HG8JjAzvcxAxZva11ZmGrBUBw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fc0122aa13f254145ab8b77aa9f4d1a3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    30d46557d55da0eb59c92a75c84cc507

    SHA1

    fb492b2060ec64544082d657077499088452d158

    SHA256

    fe9cc9f6cabc5002c21adc124cbb071bf262adf09bdde84a611d2446620d6ac5

    SHA512

    4eb54d890a8fc8590aa427f935af6d272e742db746c5653816fa5da915aca4c557fe32c5a4f201fc8239463dc27b21dcf412b51da013a493d0d94f3412d30bfd

    Download Submit