Overview

overview

3

Static

static

3

ffae0564ca...18.pdf

windows7-x64

1

ffae0564ca...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 16:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffae0564ca3aefa96a3803b00cc8f359_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    ffae0564ca3aefa96a3803b00cc8f359

  • SHA1

    5007d4547efd0836bb32cd47a3b13eecf6676ca5

  • SHA256

    bd3d129b062f7bbc6ccc67aa575a4d7048f8731372468ac85f26791ef79c4819

  • SHA512

    d9d92bcea9e4b38b132451779ff7df41cfb3f33cbfc11f9ef7b6af9d50e73c52960f4d385cb078a6a2b1f5f55133ba5c829e71de333b00363aa116102bc3c3f9

  • SSDEEP

    1536:SwpbEiFAjbPf57YE8MRmLNgap8RKyDWGpOKgG67ILWiLmcXmNfVP:DdEi2jT57YVm0gapcKPKdUIYOmT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffae0564ca3aefa96a3803b00cc8f359_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7114fbe4dbbeb4c611d000731d126e66

    SHA1

    abb8a48d0381e1d9e2a37d69f329562ca56eceb2

    SHA256

    80f078efc9b6191ec8197272209d40b8a55ba301db64375171197182802ffb37

    SHA512

    1ba69586743cca6e11769e731f648e62467524d929a924d582fc446e2888eb6f50313315b30982511859c39b054d5f4e765c6f43aa843eb243181f36b4a4f0a9

    Download Submit