Overview

overview

3

Static

static

3

ff9af240ad...18.pdf

windows7-x64

1

ff9af240ad...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 15:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff9af240ad578062f6849d59f126aff5_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    ff9af240ad578062f6849d59f126aff5

  • SHA1

    73e150238063c4e7881c973563b9542296b04b48

  • SHA256

    23774c3e902f6a5f4be7afeaaef561091b374aa9e86342f8a67e0ae70dc9215d

  • SHA512

    6b089fdccf90eeb39ed238034d1639a65b33fc228b7fa0cf46d148b4d3a27cdda337b522988200d0699543db86a149420d47827bac6971ebaf72866238f075fe

  • SSDEEP

    1536:37HhmqaUiHDuFN7drNZL7o7v5AA5HDEP8gf4Ays74s7:rHhmqaNqFNxZJ7i5LEPxfgsV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ff9af240ad578062f6849d59f126aff5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    27ef72bcd8bf2b0818f78ee9550addcd

    SHA1

    a5fb9eda4320ac2806409766029be76898114d5f

    SHA256

    28b0b1ad1d41b8907db96935a0ab9893c1f4860a3cd13914e9e0ea9694af65bc

    SHA512

    b3e558ad2a7949fe1b28bb3e50e295652aa117db4b2cd97b9198d204355f6cf9f5e90b5c102ac529055d1f68c5e2e378339cdd521e0676cd6ee39122257bf5f5

    Download Submit