Overview

overview

3

Static

static

3

fff7042628...18.pdf

windows7-x64

1

fff7042628...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 19:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fff704262898b5c81282e221034fd34f_JaffaCakes118.pdf

  • Size

    67KB

  • MD5

    fff704262898b5c81282e221034fd34f

  • SHA1

    e44a825616c9e1e684db04758d30bd2a303adb45

  • SHA256

    4ec63e6a81a0b8d1e1ded9030bc702ee3ab8eeca1be91de475dfbe17fc364238

  • SHA512

    e83fbac4da36ea2f38624f54047f1cadaacfb4b4db75809630806db19096c4f273e04659b9c4adbe35c1dedc8aec94ea9c5343c0d0bf88244e0340745f13b1ed

  • SSDEEP

    1536:w34BXU8Qakk3MPD8pVH7bDIav2qUt+nxX2VxcthdKfxuLmkUO97:CoXU8QCMPDIr2JVxctjjLdx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fff704262898b5c81282e221034fd34f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b149406328ccf52c33b7ec27e9ee367c

    SHA1

    bdd997d49198e7a05f45beea59cb52554d3bbbe4

    SHA256

    746e109322133786f6efbc75ceb3d55918dd20689d9226a551e348c5ed151126

    SHA512

    1284d9a095a4ffa9eef0cd8d6dd68ea2a0460f086bfa82a46c3ae36bb0f87deb4f1bb7625c747f657659ec56723d96d07dd049353902214a34b2ecb866034a8b

    Download Submit