Overview

overview

3

Static

static

3

2170ab562b...18.pdf

windows7-x64

1

2170ab562b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 12:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2170ab562b521e0bff2c6a28f898954f_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    2170ab562b521e0bff2c6a28f898954f

  • SHA1

    1efe135d8d78cae8779e640538a14ff36db3c465

  • SHA256

    15a5573c5c98a0af4471219ca7d52bf1207fd946b080c04e2356b0fe8fd89716

  • SHA512

    4b1c63f2c9fd801a925f26aa619e4ae30e4934e6d9e6e6af35cd9e426985b0c5d4280fada6a24a523120f660d907abb7341b6afafdca77473cb4af4f5bdb7c8e

  • SSDEEP

    1536:caRY3ylxY+Zxxjm3a5YuYKE1lNzsg+60x/vH4JWkNpOPhjvqQyrWQx3XFeJO8NC:llxY+zxjmCYhzlzs5r1vYyPJv1ybxFgM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2170ab562b521e0bff2c6a28f898954f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2100

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b4535657489981f721208c36fcb71c5c

    SHA1

    a07e7158a4e11d0d8cc66b280027ef1b25419339

    SHA256

    b19f04063e9d65c6208d6fb21a6512627aee999aabdc4fd1a30dc3d6a9736d58

    SHA512

    ff3cd87cb62700712add309c996c84985398775b92c2b6eb092355346d49bef945ffac99fdc26693c6fd32b33968a6a487d0e2be87a601487f1177d2f78e85ac

    Download Submit