Overview

overview

3

Static

static

3

fee9c74a3c...18.pdf

windows7-x64

1

fee9c74a3c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    21/04/2024, 08:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fee9c74a3c5b3571a91509224566fd9a_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    fee9c74a3c5b3571a91509224566fd9a

  • SHA1

    77fef8a35dbe365b8f6589f6275225cd2669c412

  • SHA256

    dbc103a853177ae5a82062f0262a58fb02c79380e3079b23865da3334ce7b152

  • SHA512

    d92ffb2d10a61ef4a7472e1e6514470eaff2e78ef2631a7dc63d43fb6debe4b78472347052e9482cd44e1deeb60ef205569483e5d8d4ce0cc90c6f716e61107e

  • SSDEEP

    1536:mVx49N37S4ddooFlwH76H0Xq+O9K+4VEbrXjXboHbWOj/B39W27kCqWmpOSrAYl:gYA76UXq+O9K+4VEbzYHpj/T7kC3Sd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fee9c74a3c5b3571a91509224566fd9a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c8f9a055ac4725bf5188b02a94c6ed41

    SHA1

    4e717d9f9e2f30922feb9bd4ca436baa566b8fbd

    SHA256

    e86158e6054366675d57ce42e60bba29bbf1c81fbeae04a8369bc6551aedbbb1

    SHA512

    e1cdeaa92e842d712b0983ab2d1c4c105518efc240105a4d784c1693ca3b2f7b37dc6ee6273a369b9e650fad55e6e1abc7edbd210ff7c892178c12dea847b1cd

    Download Submit