Overview

overview

3

Static

static

3

4cfccce577...18.pdf

windows7-x64

1

4cfccce577...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 21:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4cfccce5773ef9bf12583a82b11ecbbb_JaffaCakes118.pdf

  • Size

    375KB

  • MD5

    4cfccce5773ef9bf12583a82b11ecbbb

  • SHA1

    2c80e1f6e8e9d4ac395329892163c232f10288e9

  • SHA256

    f162b95222e9a923db0726313dcb12cd24c8904b0c63cb7f90a35ac0eed561d7

  • SHA512

    4ae8bcf50e764057e1a36b69a1d7e6fc869f846814b007e1c790d86b82865db44fd0c309b8a4aad1bab7a7f6a74aa09c44ed35892adf0921cf58e5c8b8742532

  • SSDEEP

    6144:IGbXHFA9vJsz1i4FDjtOS7f4E9attQtXIGD3rKkL3Z7xJk+tV1Rd5ed8:IGbXH+HsBnFHtx7P4vcbbZ7vka1RDeq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4cfccce5773ef9bf12583a82b11ecbbb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f185c7ab345004eb97d198c820ea5b7b

    SHA1

    ebf5ee3c84f4c3dc1516074dcde88917a67a6d02

    SHA256

    bfab8d6d3e04e56b1355c25214f31fccf0846dc71c82a18de0b22ff0b4057003

    SHA512

    4212ffef41c6bfda086ddc7b38a8366c70dd244b47220c14ae8b2901a8ec819bf543f20caa853fd9cbf253185a312c1c87bc009148e234c5aa88ac795d57d8ff

    Download Submit