Overview

overview

3

Static

static

3

ffffebbe45...18.pdf

windows7-x64

1

ffffebbe45...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 19:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffffebbe4545080da76b1e77cfaef8b7_JaffaCakes118.pdf

  • Size

    92KB

  • MD5

    ffffebbe4545080da76b1e77cfaef8b7

  • SHA1

    e08782d53415b39c7db1a73e530d34af9e687c14

  • SHA256

    3ad1ee032cd05678c95639dd387b54824d3d3258f34b23e1fe6d2bcdcb18d936

  • SHA512

    64ead3aeb94b0f752728214f0ec540322bf1a3d2665048138bff744b6b6262c3d9bdd8d6537f3edcdd9e8074f52bb1b088ac665023955a8cc757b09a7c9d0a51

  • SSDEEP

    1536:DlN2z0OIWK2TUKYyPT3ytQSxyUKqTj9M6eIg4J6WA7ba+YBVfeprWUpO7m3M:/B7S2mSxyUK05g4JoblYBYp+73

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffffebbe4545080da76b1e77cfaef8b7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    78dfc9112a67584e651ec8996b4e275d

    SHA1

    391c741a06aa1964b4d82a8f49c73df381d02db8

    SHA256

    e465692958bd8eebe61d02f0bf3e5e7216fd2c192858b610ba56c72789b49a94

    SHA512

    8b7df00dcc90ace7eae97a8fb3b2663b0394e7a4fc1d29cb5d05e8c0ffa7852e93ed02fc32d23f8221aa70c1c852c00d0e7f34ca0e05dc88b9a8a261c79a29b5

    Download Submit