Overview

overview

3

Static

static

3

fe21e4bc6a...18.pdf

windows7-x64

1

fe21e4bc6a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/04/2024, 01:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe21e4bc6ac1bc7db818e37a33f6795c_JaffaCakes118.pdf

  • Size

    30KB

  • MD5

    fe21e4bc6ac1bc7db818e37a33f6795c

  • SHA1

    e0b1d3ce0b56f789cc78e305242c2c902d35acc7

  • SHA256

    acafcf539fc58b3e03214ea94ea801df1f31a0c5736a9c15b717ae2acbf8cd07

  • SHA512

    fa925300787a9363f72fa6a288ca7dcd6c2f4e29aa94d6b80aa3934da97b3c758c0705ec5c3a2635fede2ce36cbe7bec9a9c25d9c9e041286fe8b019c2388c28

  • SSDEEP

    768:0P0jD0K5dAu4JZUaDF1JxFYCEV1LhAtnpOKR8:0cjD0Hu4Jak1bSCKLSOo8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fe21e4bc6ac1bc7db818e37a33f6795c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1400

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2e31082e224e37fba8d525d2f8cddfa7

    SHA1

    34ba986d1cedef22b94e042fdcd63eb41a6a7e6b

    SHA256

    57ddae5c8057fad5ac02a5400c20e67ef435b07b2baa2be123bedaa035e22c1b

    SHA512

    60c6feb870721c3ab9c64e541ed878413606f8cf2b7f0aa127b874a4dd7470ee917902624155e964ad0d7a73466a3bd58008dae2f2e33140ecca63ae42f1d6ef

    Download Submit