Overview

overview

3

Static

static

3

1ec7c75a72...18.pdf

windows7-x64

1

1ec7c75a72...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 09:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ec7c75a72c53f6e2b44e8ed69497607_JaffaCakes118.pdf

  • Size

    71KB

  • MD5

    1ec7c75a72c53f6e2b44e8ed69497607

  • SHA1

    46e13bd6792d1b95535bf4df0d0c699a466cbfef

  • SHA256

    81c18daaecf1cc1c8d638c01052457cb4e7a4727b3d4bbf73a9b4428538c79e4

  • SHA512

    b01c855ae8436c84efacd18133617a0508ec14659fd369b9ce5eed10ea29cb95c5f9e0f15e470ca4acdda78af93c5964d6ea4019e594e7f38abb8660f21d1e72

  • SSDEEP

    1536:HYHxmp6Q19DYaEZC+o/gv131mWdh+WOpOwrq5S4W5nz3VWJ:4HxmEQ1JMXo4v131muTwrq5SZz3O

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ec7c75a72c53f6e2b44e8ed69497607_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fc520c4cfa3d1f0764d828cff01927c5

    SHA1

    d2fcbb0512273bdf3fcf6a938e210bf08cb615fc

    SHA256

    44d8d2a1e17e8f5472013672dc0eb689113abb2f783f197f2a0b28f34a4d4adf

    SHA512

    751c136225074e67fb35a76d3604eed5712d05e0fe11fa71e49c9a2baeeb5703ebf05eaaf654dcae4bb30478963f93e4534b2f69baf3ae7a4a676ef7cd5f0369

    Download Submit