Overview

overview

3

Static

static

3

2f019afbbd...18.pdf

windows7-x64

1

2f019afbbd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    10/05/2024, 12:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f019afbbd46a8c9caf87a72177abd66_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    2f019afbbd46a8c9caf87a72177abd66

  • SHA1

    52d8292326c3cfb38d39483bafc156928b9ba740

  • SHA256

    6745a46f285215ecc3e87abe61818fc482453ac4e2e49ddc8b4214a7ed8b1ecb

  • SHA512

    3d5c4ee11c3c6914eabad8eaef4ea7f6fe3a2ad1a68b25a709952136c372db4b6b4a72bba2fc5863eb17477ce35a6e8d94786f991da755ce9150b09adb7d1747

  • SSDEEP

    768:EgGzpD7piMnPcTWCXi6kbAdImtElg2qTk8c917Si4+m/I:xGF3p34Xi6kbAdImWW2q6i+m/I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2f019afbbd46a8c9caf87a72177abd66_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    504595f8d59678e27d872befefc12f5b

    SHA1

    26a61b30d8b91881b002c4ca8cc80e2a3c85d165

    SHA256

    6c3b797ea8828522ad507c815eddace4268245f3e42cab55da23c0bfa0e398be

    SHA512

    c86ef8ff360d422527f4aaeee9544049f32bf7eb2ae63e8b50a5ea7bd4a9b6271cda633910dc92b5b9ebde5c65232c090f97cea041e1812c844628d3464f97e3

    Download Submit