Overview

overview

3

Static

static

3

2ea4b75834...18.pdf

windows7-x64

1

2ea4b75834...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    09-07-2024 02:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ea4b75834c96fd1da7cc2298dbd4649_JaffaCakes118.pdf

  • Size

    90KB

  • MD5

    2ea4b75834c96fd1da7cc2298dbd4649

  • SHA1

    badef4fed6632281b22c6df0fdb14a5c00033ede

  • SHA256

    14ef3612914a3ab85842899ed12dfdf1a03031eafcbea043e9b738a25b48dc8a

  • SHA512

    c6e60eb18c8f776ba436f39afd081817c66d72609d5a52dfb868265679f4d18e6b5f83e2d2ae942388b755ec8d5721b3e3c2b83db0f16d120f6425cfa334355e

  • SSDEEP

    1536:otZgElHNq+HEw/iJoDIrXDjOzkRfxix1xMyDiT1Lz+FVyzWlNF2YZNDKLfWmpOSl:ygEps+kRiDuDaIRfYBMyq13mnNF2QELb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2ea4b75834c96fd1da7cc2298dbd4649_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    437a843975a01be34793a7653ec5e813

    SHA1

    817af52bc5d1fe6530ea8dc1152dbf8bb2dba700

    SHA256

    d372da663ea0cb174f66b552e9b4cae5f4b1446986ad5a1c0c9c9e736dd08c60

    SHA512

    b38e64d0e147b6fd57053a78b1ff06809355e92c0b2a3885332245f9f8f45527f2ee0a542896a7e006c8dfec8bc8be570d9b904d5c753298a88f350a16a226f4

    Download Submit