Overview

overview

3

Static

static

3

ffe2855cdc...18.pdf

windows7-x64

1

ffe2855cdc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 18:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffe2855cdc6042f62fc85d74ed649a43_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    ffe2855cdc6042f62fc85d74ed649a43

  • SHA1

    7322bc318862c80036c6793a94e0dd4116b1f35f

  • SHA256

    3a2161038958df0c64fbed8eab68dc6492ce9ca191d7ca2cc8ff1a109c0b7b68

  • SHA512

    bc2407c9821ba89fdaea2a00f4d026dcb7c16169d83de2391dfd621db71a551271c0ebb88afcf6be3996962825a47a010f4770ec502241d70fc9b0572b43f18d

  • SSDEEP

    768:dX+vQphOcZs74tZ8E9u9SB7xdfakBppSNvq/pUcUReg:du2R+oY9SIynSoCvReg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffe2855cdc6042f62fc85d74ed649a43_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    73e5cdc8e1df797c87ea47fc99bf7f15

    SHA1

    732bb865f8eb212927cf110de56cb14532755c2c

    SHA256

    112e7b8a40f3cf20c97d463ec9f93f6c98af579ce1fb37269931a554ce495116

    SHA512

    f342733e701b31e8017a813a2324a8513e4efcfdfc7e6265cf63c380af30399b17c7ba3a95aaa182a8aee9947a198cfe490efb5baf578220ed975eee129ec776

    Download Submit