Overview

overview

3

Static

static

3

2c1f1957db...18.pdf

windows7-x64

1

2c1f1957db...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 22:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c1f1957db88c0a221e83fb701acb7fc_JaffaCakes118.pdf

  • Size

    57KB

  • MD5

    2c1f1957db88c0a221e83fb701acb7fc

  • SHA1

    d9f8b8df170f01291bae4fc4cc1c3aa5d7f00e50

  • SHA256

    e5cad045b99ca985e65f1d878a17d2ed776044f896a50d662db5722ae8a78081

  • SHA512

    3654a042fca8004f6a1d1591a45b37a6adb6d7bbf77eb9f9640d067216350635088ac8e016787da317a8b52de35e5a46376dbc226ee9488eb3c475ea49ba651f

  • SSDEEP

    1536:SsHnlY1CPrv7f5XoFEWX25dgmqryh6v+b+txUtVi7y9avydq5rjTqj/oz7DVHCvq:9HlY1UjjJIDGrP8mc4KCgyImq53+jefd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2c1f1957db88c0a221e83fb701acb7fc_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    90aefe3a080d217e16f10ca93aa54b3e

    SHA1

    1f65db24ccac5f4c5b335ae6b593dabf22c28fb8

    SHA256

    e861b178bdb12ac110afbb9be6b702d7988ca827d099282fd43f51995e57025c

    SHA512

    e74d693a9b37373916b539ee1527c4749700b25abe49aa8193c4bc63dd9c53c39415a93c921aad635711ddceacc3653916dbf7b363504b28ed97307e0bf5bc22

    Download Submit