Overview

overview

3

Static

static

3

ffc40f2c8e...18.pdf

windows7-x64

1

ffc40f2c8e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 17:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffc40f2c8e8cad057372209b2373429c_JaffaCakes118.pdf

  • Size

    85KB

  • MD5

    ffc40f2c8e8cad057372209b2373429c

  • SHA1

    6ec3ae53ba5796cecd6f3655e2d46d278da03d66

  • SHA256

    3a1682c3a7dbab88adb592d58afdce33f06d23b50d4571e5d73c62e61dc39afc

  • SHA512

    440da6b89920aada4adeda91cb19b01c27642b85cd94f270431c097d1cfe9bd0ec4637594761d7750d4edc8bb9afe787e0f579cbccefa6b40b0f041fe59a5df6

  • SSDEEP

    1536:sSdZqvOUy/wxcQG8Kfm9WvHJPkv/w1vD85xgrsC/nSRRC0W6pOu26WXn8q8Y98CP:9ZqvTFYnfLZZQTWb/7tu2dr2w

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffc40f2c8e8cad057372209b2373429c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    78c32c518ec3dd0382a5ad3b0a54efdf

    SHA1

    57c5c52284203adb872f374fe382da21f685b15d

    SHA256

    699c37921b5acd6221419cb10027b981857d92c8ea9831a5ec6c4ebff7e0cf37

    SHA512

    5a81baf672a5a102ec28759b188c5d33b2004f339ae0c66eb682e2dea372242da3f5159d0ec40c7d643ae0f9b411279303153930ae96502eff88481358f5a576

    Download Submit