Overview

overview

3

Static

static

3

ffca25e499...18.pdf

windows7-x64

1

ffca25e499...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 17:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffca25e499d7853976b6d209afadef19_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    ffca25e499d7853976b6d209afadef19

  • SHA1

    1a867f445a9220e0b873f24d277396ba322be4ae

  • SHA256

    bf54dface3691ed649d78615470e4fb845de42a51e902a8665aedfe00ebd8f23

  • SHA512

    85f9b964112061fc66286bddd5c961bf13528d3153ba2601793b8e32629e82c05b6d4b3b3c7502414cb3bf2764b924019737749cf4b1648586ac61e344aea157

  • SSDEEP

    1536:2EjHqdc/p+DDFT2fI5RhJVwYtnAEuIcwwZhUkkkA/k3uqtoRqqpWYpO2KCt/B/Cp:VH6EtIDnVwYtnAERAUkkv/QuqgA2vt9c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffca25e499d7853976b6d209afadef19_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    715e8805fed990f670038c5841182ba5

    SHA1

    290924f2e9a93c5cd84086d20a7d80babc05438d

    SHA256

    d0f174fc8864d43be8bace7b1fd9a8b2d4c24d3678cd41007e5fc71023d2ccd4

    SHA512

    2671d61b5d55bb1b9e2bcd0d823534ddb72c4c8f7f227621b3af0bdeb00f542bf958fba41745d2349c4ab6d3fe276ad6011a52513188e8e5771db43ccae8f23f

    Download Submit