Overview

overview

3

Static

static

3

fd0ee5407f...18.pdf

windows7-x64

1

fd0ee5407f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 15:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd0ee5407f583cf370283bd14f311f5f_JaffaCakes118.pdf

  • Size

    95KB

  • MD5

    fd0ee5407f583cf370283bd14f311f5f

  • SHA1

    a7caf9fb810a5de2fcadf72df84969d92844ad21

  • SHA256

    141d7d4da64948a2b3f85f11b81fdb58e84f75fcc00613bca0816128637b2b3d

  • SHA512

    21cce1b72d6e7ba910ecc91c3301d5da54868188ffafc646d637daeb3822b86ca1fddbba36cd1f8ff313bdcfca977de453e9a8385ed762141e8d7c145312ef4c

  • SSDEEP

    1536:XxiDEt5XPjHl5Y9Q1q7JTKYMKPU0kinv4yrXOhy2PDLdEfynnEtWTDnkODg8/apf:mKpPzsCq9eTcU0xgScVcynznb5/6LVic

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fd0ee5407f583cf370283bd14f311f5f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d189f1b3eacace8eda298ebfa74fa25f

    SHA1

    78ba117f4579a1ae47554b328d630541c396b55e

    SHA256

    755e0959ec80ff887c1789b50686ac6c4a1c727a8a246e59d805ee870957e89f

    SHA512

    65cdf0b51e63f14d216d999334645dcbb179aa7af9f2eb3184508a0e0fd64039ec0c15a99f2614a3d24cc16c41b8cf3ef4c803279a9f3478c7fd6e1770e0af29

    Download Submit