Overview

overview

3

Static

static

3

2adf701b6a...18.pdf

windows7-x64

1

2adf701b6a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 16:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2adf701b6a0dc99a4f977b27288d494d_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    2adf701b6a0dc99a4f977b27288d494d

  • SHA1

    679f87f17932df33e144f3bc88d19e00e6e1bc69

  • SHA256

    c8101d9d3a38082cc616f57a00b210c0a40e5e6d3355efb3f0872649b0a191a1

  • SHA512

    4cbe6b0ee0eba26b3c3bac5dd96bfe1f4606f761f8f9edeaf0392d3049081b5b85ff7025ebb6f236868f821eb8d2e27ec75350c7fa50cca09d945be176f0170f

  • SSDEEP

    3072:ph2irbxzGAFYDMxud7fKg3dXVmbOn5uY6Kjni2OM4Xg4X1NTItbPmw5BN7nS6:ph2MKlWQ7Sg3d4bO5i2OP1NTM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2adf701b6a0dc99a4f977b27288d494d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e047e1ec71751f1cbffd14b95ad60ac3

    SHA1

    87d050baf7423becdc7b895fb8dc23e7e461abea

    SHA256

    74f99762f9b2a13fe5914ccf7c209c10b54836ee2a7318899851ea7c5d35441b

    SHA512

    aed53b4b2969ec9b4725bd991a014c4eca9fd9363e9f921315835b8b4966b9af4a337286dd72f39bf2dda18fc9f0d45a6717e914393fee299706785640131a76

    Download Submit