Overview

overview

3

Static

static

3

ffc72cf277...18.pdf

windows7-x64

1

ffc72cf277...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 17:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffc72cf2771fd604437e6539354679bf_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    ffc72cf2771fd604437e6539354679bf

  • SHA1

    7e7852ec99073d19139a0c44bfe799df3b34958c

  • SHA256

    5ec83836c5a4076eec3ef4ad9fa46ecd7b83eb391230bca9fc6b53dd5b6412e6

  • SHA512

    19f9995cdd7d49b21c8365b19cb79e6e5139f60ebbb3e7b4dc469faeca02133e6202cd90f65a07d537f144f6912e5189abb3a9fed3bae0e129ea3af9a8e13913

  • SSDEEP

    1536:kSjlFsRPRRA2q7XCiF/CXpbxyUwWRhjsW6pOu2gUh93WMMnWlf+6N:LjlqPvq+iGpAUwKpu27hM+fZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffc72cf2771fd604437e6539354679bf_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e29b4d424cf158cefd83503d72e428c

    SHA1

    2ef8f7400204b9c3b53bc11906c10a873ce942e7

    SHA256

    759b1a565a3f3b0c53cf05d6b24b293179abc0bd5880ab07d0a724c1133a5ccb

    SHA512

    67f281ac53a7a5de7c776d2ecaf3a2c4eda7f4c5d923c548af494bd1fd16e2d33896c85f563b8344eba500671cf4a56d961844a4c52255f368823635728f2733

    Download Submit