Overview

overview

3

Static

static

3

fcca2505a1...18.pdf

windows7-x64

1

fcca2505a1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 12:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fcca2505a12b9e8a17cfb6cd7c79da79_JaffaCakes118.pdf

  • Size

    94KB

  • MD5

    fcca2505a12b9e8a17cfb6cd7c79da79

  • SHA1

    df04d08864ba5ce4892095692b75223661172622

  • SHA256

    576a6d36860f760cb929195dfcc8f421bb258ba532f925b98d5a2dfa57793423

  • SHA512

    93e7dfb6b46bb1f07ef9f27d9078bf34365c19453137e948224e1683605a9707b342c064050b550bf8f883f9c836901ea011aea30575f52ade75274fc5c35eeb

  • SSDEEP

    1536:yzNfsYlT0WU0SSA9Rk1v5JG5/gMV18dWIXcEKFRVcWUI59h7rwUSVlujl:yhfVlTo0K9QRMBgMj8WIXcPPVgI59prr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fcca2505a12b9e8a17cfb6cd7c79da79_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7e8157e5c5af87088b73ddc2893caf7e

    SHA1

    4c58964f3fbe4f20789552948b306e0680f913e4

    SHA256

    ab58178c1e382c80dcda9a3811d61fbdbffa68fd132d72a541aa384019aedcb3

    SHA512

    87311c4dc3c6a097898ce087d438ebf317d11fb3244c9ab540ee1a8cc7ba9833a000f94f0fc7be3a114c6f411471dc678c28063a19237e2cfef02a401949063f

    Download Submit