Overview

overview

3

Static

static

3

21fd9218ee...18.pdf

windows7-x64

1

21fd9218ee...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    03-07-2024 10:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21fd9218eee171591771f5c364deffd4_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    21fd9218eee171591771f5c364deffd4

  • SHA1

    4c43f6b6d5c824d807e387ed3ca0eed745ab496c

  • SHA256

    ea6440c004f44bffc42b57d98c127caf928d280ad282ee167a9f8e1d740d4966

  • SHA512

    d02ffd8b201e8e9a88956a7f007a5275221d226e05ee4aaaed5bcbbf97d1d21d9236ebb1aa2c487305ce82f4fdb0c9bf57c20eb01f5e21d607d34675fe946cb3

  • SSDEEP

    1536:I6XftGXoxDafBJGgOGU8jL7YtsC02P/W1HWapOtQHWP33EBanmYRvL:vftiZ5XOG9jYtQmW1otQg33SWmY1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\21fd9218eee171591771f5c364deffd4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ffdef373437939340d428d6277091c17

    SHA1

    c2b595553db1e55ed0d84782880a07b6bc10ee08

    SHA256

    21503a3980dddc000f6f9183751b8b383a2f149417decbb7ff28dbb68688e63a

    SHA512

    e2742a1c2f4231e9d10aa7a2cbdef55ba734b64016e5fcd1b18fff4fb30a32f3babe7333cb148e0d3a424a8450b681c01e1672b788a4f8e089b61fd723066df2

    Download Submit