Overview

overview

3

Static

static

3

2df9885592...18.pdf

windows7-x64

1

2df9885592...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    08/07/2024, 22:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2df9885592d46c8edee17592e570dd34_JaffaCakes118.pdf

  • Size

    97KB

  • MD5

    2df9885592d46c8edee17592e570dd34

  • SHA1

    cbf16a7a97c08ee67e2589a9eae2df32d4fd1b67

  • SHA256

    3ac0cb6c3464400d167fe5107afee81ffb62424315913d84f0d8e9d25e5a1c47

  • SHA512

    bf45b91ca20630fb2180cb6a4438ff2348f36e34a6eec3af8243bf2a382ab14e021b5c528d1617e7f066ee5176e19ec7800f7f81036884ef61b58536a73d5be6

  • SSDEEP

    1536:zk8uPktnHrByvaU4Wa0r2Nr4yK06lU7+Tw6NGuG10K/XWg8SGMsxD3tvdW8pO7Xs:eslHrBcrrsY1TLGuGyK/78ZDdvc7c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2df9885592d46c8edee17592e570dd34_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5152bcbad8b7b16b50483b6a4e901ee0

    SHA1

    9c5754b83f7023995d78a9aa5842e517e35f3577

    SHA256

    adc4b0f5b921d3c2bfe1b35162bb6eb71c2da679c9ad2a99b557e532378bf5f3

    SHA512

    af81d5450ed6bcbd156fc3b6cc42235a5a734172aeb8f2a73d9e50a09c3f3d749ac4401cc40416c19e4c1ec525078356cc7e2b2fb32e02233c750ba81324b999

    Download Submit