Overview

overview

3

Static

static

3

2b9b793191...18.pdf

windows7-x64

1

2b9b793191...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    09/05/2024, 20:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b9b7931914bbaf742f4cb39c35ae03f_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    2b9b7931914bbaf742f4cb39c35ae03f

  • SHA1

    6913fa7c4317d0018e8e7ccfa8dbf631ae54ec1b

  • SHA256

    87b434fac3c16c3699cf750f312cf9e637e59005af039873fbf9f212320b4f05

  • SHA512

    4f69d64235e3c034fff590c2de1d51a2a6e452b2b10638dea63457cf8b4a843d2fb8ea53f364dba8ece55a7e61f2c28767d739dad31871ed997aeb7eeecdddc9

  • SSDEEP

    768:dgGzpD4b1Q5N8UCgP83OONkZwW83AUUOs05s+B4X2sTYIkZeEIilr:eGF88wW1UDs05s+CX2VzZZNr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b9b7931914bbaf742f4cb39c35ae03f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca65cb8aef9e77734fd79dd99daf89c4

    SHA1

    78e25df9ebcfe67ce7f004af1ba941457f8796e0

    SHA256

    251182da7cfb7e2027b6b42710aac5ce09c9db0ac7d4b9e80150c7e1aaa554e2

    SHA512

    e2eb2770e34a1b4995ec0ee01f5e1e00ca486b9e9d16c8ce293569e8032a56b17b106c6eb7784b721d83599337e8798a01dc07ce575a5774243bd85c3234a5dc

    Download Submit