Overview

overview

3

Static

static

3

fcecab5faa...18.pdf

windows7-x64

1

fcecab5faa...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fcecab5faa10d9cee9c6e13ea012bbb1_JaffaCakes118.pdf

  • Size

    74KB

  • MD5

    fcecab5faa10d9cee9c6e13ea012bbb1

  • SHA1

    7ade54c9ba4dbe5b73ab0a0bb5a7dfd77b37f4cb

  • SHA256

    20f1e10cb5fe48333c0381e3bfb03ee4b9cd2bc5271e352d93952ec397564d63

  • SHA512

    a39df020d7454269fc781e25200d9da27df29560c3ba08a87031dc0587cea6d9f54348eca2ecf56a0f39d8d3d5a7eb6ac33d6f858841c334b87b73fa87488962

  • SSDEEP

    1536:/LteVr1ltx4gaswWcJqlV6aIWHpOv7tGDJn6W39tB0H3Wh7:DteFAsw7Jy6awv7tcn7AI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fcecab5faa10d9cee9c6e13ea012bbb1_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8580a15fb74300b06f86310bb15b6980

    SHA1

    d7e5eadf90ada9296e748a2d36976195fa6008ca

    SHA256

    4f05fee0618e4ffb7a8db84bd8db39f954b7a32dff819cdc2df2902744e1f483

    SHA512

    db72f945103b4bd53ac385048e4294b61bd2383c986a23c54f742a10ba67ad8448550047977d8bdeadd2fe2f59090f55ee68092fe9dd68e7d15f5af8ac052ac2

    Download Submit