Overview

overview

3

Static

static

3

f2e3ec61f2...18.pdf

windows7-x64

1

f2e3ec61f2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 06:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f2e3ec61f29b4d2a5ed4d149093d71a8_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    f2e3ec61f29b4d2a5ed4d149093d71a8

  • SHA1

    ca229312981b13fed90101fa0f988f88e2c42586

  • SHA256

    d2b346854d851312d8c156046a4d4f766c89cc9b2291493db55500e5ae9f93f1

  • SHA512

    c1768be17d99c6527c310181de37539ac6caeac39516df3c4fb026baec1bf7ddfaa991ee0f2bedcee1281bb4c0bc9cbb0023b325ca9e5fbe45c62ac368ad20fd

  • SSDEEP

    1536:23CbFPALlM/WcNtbpyazKPjHSHCvGgCUFTWGpOKCW2g8IYyWFzDwNMNqCArCS4:zaloNtFPyH7vJCU2KoIYyWVwNVCC6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f2e3ec61f29b4d2a5ed4d149093d71a8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9e8b12584c1de948fa076618bd3a3877

    SHA1

    0d5c570e2d587dd324c12d2cf2f93205542d3218

    SHA256

    f7c2e9fd71e8257f0ac89a0d2dbb2535dd2a21b9f46ce37058ad3167c65cbe7e

    SHA512

    f7b9e6757416e4f18385c46c6506f0458f724d89f765a4f5924c191a346f0e9c86e5641daba69e01692c138ac2605b9b3f08873ea1bc4aebf9c017fb3f2d0527

    Download Submit