Overview

overview

3

Static

static

3

fffce060a4...18.pdf

windows7-x64

1

fffce060a4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 19:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fffce060a40dea2e2742bf3e06c875a5_JaffaCakes118.pdf

  • Size

    136KB

  • MD5

    fffce060a40dea2e2742bf3e06c875a5

  • SHA1

    e80f190149e26f4aa499728c34b5ca6541cc8b1a

  • SHA256

    378235378445ca35e36a24530214ffcaf6775a7c49bc6f37a4bb7a342fcbe66b

  • SHA512

    2407339beccdeb4067daec95e0e0b32c7f1620f29891936ced04cc66a2c375191edbe6791126371a219110d6243007621bf3bf584e4b2582c6b519f3b3f3a595

  • SSDEEP

    3072:pv27syCroUejci9s6jUHJk1VIMR4Bv1UZmh/d2wND/c9Cud:J2wNoUejcKjUHu1qMeBAmSB9Cud

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fffce060a40dea2e2742bf3e06c875a5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eb5a28c80cb93283b089c5a4072f7444

    SHA1

    9e2385a9f6ca9c1ac51908a52e3782c2b219f292

    SHA256

    102e99c7451cba84c8dfa48d88378a56cbe2d18c10a4e14c794a89f48576f88c

    SHA512

    9bd88b3a5023e74fe040e3c92730d075d038da6aef7b47bb9ddd60fa296852be1f6f96a909013cf65826bcbcb3874fe58386de2852d265aba637e05d674cbe5b

    Download Submit