Overview

overview

3

Static

static

3

21c685c6a7...18.pdf

windows7-x64

1

21c685c6a7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03-07-2024 08:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21c685c6a7d2fc86572bc3897907e10e_JaffaCakes118.pdf

  • Size

    102KB

  • MD5

    21c685c6a7d2fc86572bc3897907e10e

  • SHA1

    1f69c629356fe6b1a4158e30b694121dabb40b0d

  • SHA256

    d879819defe46ff75e7cd896f138492e12ae8f19ffb585da08c1ff547172e999

  • SHA512

    7c719117f38f3634a8da404fd12034fc76fd5f3fccef93213f10478bfe35cf93c9fc68ad7a9188bd0bdbd17959bd287bbad0180647eafb54fab3e8e7de09efb4

  • SSDEEP

    3072:cLsBjR7iSbJIITtvMaOCWmjluUlpgaZVqtXop90pbUs:tBF7iymcv5WmcGZU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\21c685c6a7d2fc86572bc3897907e10e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0f0bfbf2ef77ad93bdaf2433fcfc11e0

    SHA1

    2de2b10b8b36b31d3cad94d0fe906f1b93c907d1

    SHA256

    bf2ef7d14f1400671409fefa54133c6a701d31223f01281190f72c10a11b2fda

    SHA512

    54009ffe97f1461d93a1f48c545ebd7597eea08667e1406db9eb534edd5fefcfea530bd1eafe5f40d01fea6426e7174fdbfbe807f5938e61d1e152c6839fd301

    Download Submit