Overview

overview

3

Static

static

3

fc1a161260...18.pdf

windows7-x64

1

fc1a161260...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/04/2024, 06:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fc1a161260d2dd7d62720feeae87f377_JaffaCakes118.pdf

  • Size

    88KB

  • MD5

    fc1a161260d2dd7d62720feeae87f377

  • SHA1

    dc8c619d9639f2a677e33255fde8de934c5cb415

  • SHA256

    71bcd7ed9badf1153cfdcde765bde1a55efd07a849d5c4fe47a163a3da7b194c

  • SHA512

    926ee08a60c0d57c37abb4668feb333f5570fb7db80d80a7f2dbf83f976e8291d975b16dfb27125148e9bd446c8365c88e7feb1b0b016d1afffc4a7be2bf73bc

  • SSDEEP

    1536:T7xO1w6HTFYl8Y0Dna1jO+HTcwU9DfayO3Hi9WnNCrLrQAIYCXo0jW6pOu2etDdR:PxO0l8Y0bovzcwUpayO3HLN4jC40ou26

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fc1a161260d2dd7d62720feeae87f377_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    317bde215b6b1940d0e21ebf003c53ef

    SHA1

    7422b1800600c279c0e81ce711815bbf6c20bd1f

    SHA256

    b8c6f4a483dbcd8e65245acd643d595323c0afa26f6f37c58cb0234269594fa7

    SHA512

    24cc38b49c65b14943dfa78be0e696e2a9c3f4e581e6646f206fffdcebc073d5682b83f5d097e064a61acfa00279a7aee7563de6ef5ff2816546be10d50d0e55

    Download Submit