Overview

overview

3

Static

static

3

ffbecd3553...18.pdf

windows7-x64

1

ffbecd3553...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 16:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffbecd35538c4629e17214ce483451b3_JaffaCakes118.pdf

  • Size

    92KB

  • MD5

    ffbecd35538c4629e17214ce483451b3

  • SHA1

    c815618135d88286bfaddbf2259c9ea15847abdd

  • SHA256

    f8371837714c9237cb843420ba7a7bef2efdd78b57c9aa6927acb4a95c133e99

  • SHA512

    b2d244421f4b546df92186963c5cf8aa2deabdffb1faa2db1dc1507fca680c5925de1b46d9409fa5ffb89ecced3913367e63d712d050a3bd649d693fac82c013

  • SSDEEP

    1536:xn//HuB+cfHX+TlMF1y+ci6rTV2uK4OFtDBjx23Extws3P+Tc358DolTp1S:pXuYErF1y+LqTi4OFF20Tws3P+U8DoJ2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffbecd35538c4629e17214ce483451b3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    61773ef808158658380c1881577552dc

    SHA1

    ac7a378a4b1b92259f76bc3f2d466af1e90bb5ce

    SHA256

    11685825f646db3b4ed37776d31bf240bfd3346c03615b2abddee6a5ed8cad14

    SHA512

    1e242aff1a971d83d29b5f4a7a1eb3a0de5d89c06e74d36fc0c02e62482a0d89376c64bb62107523b7f1a4db3b0e38d2b8c7bfaf4fbd1c72238d98f62c650022

    Download Submit