Overview

overview

3

Static

static

3

fe17fbcebb...18.pdf

windows7-x64

1

fe17fbcebb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 01:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe17fbcebb8b22f9c8c15aa94a8f4c65_JaffaCakes118.pdf

  • Size

    80KB

  • MD5

    fe17fbcebb8b22f9c8c15aa94a8f4c65

  • SHA1

    eaf5f4ed659ebdb06f0f61b2a1f54fe36e405a88

  • SHA256

    a55182386b2fe3776cd465ca8c29c7847f26ffe29ac235f21586d72631f64a85

  • SHA512

    765e5942a5ac21979fbdbb13988b74aa4021a00c663761f7899971456922d4ddcf30bbbf8b9f5261d3106282886bf286b8da693cd8d7f802b0855e0ba86bd001

  • SSDEEP

    1536:TKlhJ31Cfr36XtFChF1WHjxgjKJRW6pOu26WJZYrmyrt:WxFI6bChF1WHjxgzu2qKO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fe17fbcebb8b22f9c8c15aa94a8f4c65_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2492

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ee8af072b9fba542bb97adc8bfceba55

    SHA1

    b6db9568aced084c9c2ecb647700dd799d0afa37

    SHA256

    db90c2c811b513758b241a0c125964656ece0f1fd53210174df266278fb9cd3b

    SHA512

    b59045975362e6cd8319bfa764044b93ca71aa84591ee829f71c7c525c7d9df6d04292f07e77c5133a1ea36b514e593f55d95ac07f74776265aa859b758ffb3e

    Download Submit