Overview

overview

3

Static

static

3

ffcff0d5a2...18.pdf

windows7-x64

1

ffcff0d5a2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 17:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffcff0d5a20a6119ce320272f202bbb2_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    ffcff0d5a20a6119ce320272f202bbb2

  • SHA1

    69fbbc824e0677e6faa4c3dc218fff0c99edb003

  • SHA256

    69c1c6f84b4e8fd19e7b36058e168b47397747d98aa59f7850f7dde36e60a962

  • SHA512

    89ec73401691beb5f4cc8fedfadb74ee21f1c75b0e3ca926770038de21a508af137689cf1a8932bf391045a3bb5b1595604782fbdce8e8cab74b134669a6a7e0

  • SSDEEP

    768:fpllPnH+CwQRx608E4ZhbbeKbGt7SvD1MTH+mek0L:frlPnHmQT+WaD16Hwki

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffcff0d5a20a6119ce320272f202bbb2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3644b438c5dab2f8568a19e89158082c

    SHA1

    ae299abd1cdad076544a3d2a5315172adaee5c3f

    SHA256

    48251db958f02cfbb8d40c3181fc5f6f85e2361c2a390bc567a04cd931585072

    SHA512

    b4f135cf05801ffd7a09a88f9a630d86951731715e2e07f84eccea063ff3b16e391e36fb37c85864d094adc35839694edb8e242caf5523962a47a42f18b6ca98

    Download Submit