Overview

overview

3

Static

static

3

2065bbe7f0...18.pdf

windows7-x64

1

2065bbe7f0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 11:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2065bbe7f0deecf7d30dd640c144eb6b_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    2065bbe7f0deecf7d30dd640c144eb6b

  • SHA1

    21525193d5c7a1a13d1cba9a0c4de0ac2ef95eeb

  • SHA256

    41ed8739e091593a2b5fac56f48f5dd60af5a6337173c6261173ce360fbc638e

  • SHA512

    a04f3a67742f3d58fb2bd0a407e09776dc1d0763fcee17cfd75a6be86ade2501f0d0bcf8979be9b3e47f29c2a05e15249731e3452d0c9734ff02a6307c016512

  • SSDEEP

    768:ngGzpDtdSsOlfjNOs7xfy2pokwIUEYrAcUBwsU46B0VstOw50679ly69Szh8uN0l:gGFpi3xfy7/AcIwFd5vy6sl8pl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2065bbe7f0deecf7d30dd640c144eb6b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0cc6f65afb627c39db5120abdcc730ad

    SHA1

    69d106ea0fcfc66d9d8aaa2d774e10736d1a570d

    SHA256

    6df380f670e22b2f5a7455a253af5c0e9a64138fd5a86f7c4832d939d98a2a0a

    SHA512

    8af128570d1b324210366195a017e186c2fcf47ee1ea921f21f2d7be70634fd8d56f09eab421e2c1860fc37e64c654e4e22a23af9b612371ac3f61d74aa60684

    Download Submit