Overview

overview

3

Static

static

3

2470f15ef7...18.pdf

windows7-x64

1

2470f15ef7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    130s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 14:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2470f15ef7d92e4ad33b0e44be26017b_JaffaCakes118.pdf

  • Size

    110KB

  • MD5

    2470f15ef7d92e4ad33b0e44be26017b

  • SHA1

    8740c42913e77afa2d472e99b9864a56451235a8

  • SHA256

    1eb401a0a4d1cc89abe7192e1b7b5f06c7658bfe72cdbcd14393bdb09b6bb3ee

  • SHA512

    53dc566ddd5cb2ae41caf34a356f708dd3d0c9d2e188ba13faeec72c5a760976cb96986611678608b5a0a404805a344507d73d6a4523a49260e4ed3917e423a1

  • SSDEEP

    3072:7mtWO/zQm2SVCGxJs6nEP1RlmXuWh73lP53+U:yYmzGJAW1TmVhZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2470f15ef7d92e4ad33b0e44be26017b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1613826864dd651c25987fcfe0f916de

    SHA1

    8000ed28042e9e718ee820222ac9cb1e304af1d9

    SHA256

    4ed865b48137e20333d35a11625b520ef45f0175781d4bbe77e1a19b6c59d752

    SHA512

    fe3d80b34eccceb99f00bb495d3b8cbdc1059ba2e62f853f635d611a50bdfb1f832f397bd3632f7333058840f0129228963ae1023662df7c416311cce17ff7b6

    Download Submit