Overview

overview

3

Static

static

3

217e2f0ecb...18.pdf

windows7-x64

1

217e2f0ecb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    03-07-2024 07:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    217e2f0ecb1b8f34ac6fc0f8c247fe89_JaffaCakes118.pdf

  • Size

    77KB

  • MD5

    217e2f0ecb1b8f34ac6fc0f8c247fe89

  • SHA1

    cac74647728b4b5cf21aeac411bb05afa7584962

  • SHA256

    c9ef463c9b7a2fb6ae9d412b817401a90f3ba3d354b41e04a60506871fe57934

  • SHA512

    cb28b5e6d3b798f50edb8a19eb30c434389f8ca6a95c5a6e84e5fd07e06463b7d5c6a10fc1dce7bfa219d7e119d3ac5b3a221c065ef19b489d5e5f751a5744da

  • SSDEEP

    1536:eghY2gmazfzVebDXGpDxKU6mWM3+HMIyEAhAN5fpWp0z5PGHUuUaW8pO7VyWWm:imaz7VAKDxDqM3JIyEAhce1UuUh7IWr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\217e2f0ecb1b8f34ac6fc0f8c247fe89_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:836

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cb5bc172cb23629e7a888bfcc96aca26

    SHA1

    b67df8d9e632c02c08d2e1ee3cb5031ae77f6f54

    SHA256

    1328e82d15048ee885df26e36d9d680785c67faac46f7094fe31a6434f6519d1

    SHA512

    1d1295d341dc9aa8a92d42085ee7a1bf4e07393f11691a0a79d1682a75ac670defdef48c4d6cf5deb522bc261e55dd07e0a449db2ee0fd7862e35bc6c00c6ad1

    Download Submit