Overview

overview

3

Static

static

3

ffc7a3637a...18.pdf

windows7-x64

1

ffc7a3637a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 17:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffc7a3637ad8b551c900af0867456cec_JaffaCakes118.pdf

  • Size

    94KB

  • MD5

    ffc7a3637ad8b551c900af0867456cec

  • SHA1

    87208d1407080125329d16f410b72e2b8c118a34

  • SHA256

    d8770918f7d7024cf530a75310e85108f4af584f2263e118da3d00fbc261eb97

  • SHA512

    9f8ecf1095ef2dea7f6f5d54e481d4ef551cc8add332a31c962fcfc0e2ffb4a15822802a14529ac7d1514ee13bf49fd0ca1569d2f624a707ca403de8392c9fab

  • SSDEEP

    1536:Cvfud7Rre7t68QSm1G1jxWgNcXF+d0pgzbzWmLJLR5xJbw2teSBybzKWypOlLnY7:gGJRre7s8t1FPamiyn/fDdw2txQnblLO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffc7a3637ad8b551c900af0867456cec_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    af82342e4749a52badd58ecae51f9452

    SHA1

    cb19c776996366c174e34a33bcb73b5cb630a7ad

    SHA256

    4cb6128fbfe7cd7b07c3948df827bac9ce9c4a61cb264cc4e77424addae63a5a

    SHA512

    66b7989b787d76701cc13fbe186f618f252e5d99d5a9ff62d54d6d67660afcfe75a26fc570e7f60cd817af3e8f19b6c084a0702fac877f9f12f7fe12386b278e

    Download Submit