Overview

overview

3

Static

static

3

2886d36243...18.pdf

windows7-x64

1

2886d36243...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2886d36243c41973f1771844d2e38b1f_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    2886d36243c41973f1771844d2e38b1f

  • SHA1

    cf358eb023bc86241acfd355b54dd39210887efb

  • SHA256

    2bf8f785397e744afbf6f1db7ee7d8276f3ec226533f90c522eb38c6f6f20532

  • SHA512

    d50640078d3007efdf98d1dc7d2999b07ecce4c49dbafcca9e7ef831e6a223f1fed3dcdd687593b03dc14c785383c655d197bc6c4b5742b2f5395efb238b6c85

  • SSDEEP

    1536:HqR5rCytWBFth33XIz80UHUuVKlVDtt8zb4Xgy5NRE9AVWxd8Jw8EBW8pO+Nhu:85c33Yy0IKlVDtUboRAAydmwhg+y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2886d36243c41973f1771844d2e38b1f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0f1b9fd82d4d2c1b22b8d98db8d17541

    SHA1

    f6448a9ac1e1505269df6c54066143246d543cba

    SHA256

    9a10aba34a6bc8387fe5bffb284730bde60e0b96754de9ce7c74ebb49ed74624

    SHA512

    27d842da57477de4ba0f8e009c9241d561f64b7f498511ec2b294d04f51a9e09da4e2339d90087066df2ca19a1ff195bd8e56e7925dcfcb43ac5576191a97b92

    Download Submit