Overview

overview

3

Static

static

3

e11ad50d2a...18.pdf

windows7-x64

1

e11ad50d2a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 09:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e11ad50d2a793ec9364d4335194edf25_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    e11ad50d2a793ec9364d4335194edf25

  • SHA1

    a9767232dfefa74186cfef81b992016775c35a16

  • SHA256

    487f11ce7600475b238b0a6c9ede4aae8c82c2dc63d0e8f8d902fbca68665feb

  • SHA512

    25929798bea1ef9b3b89202164fbb13bdff8be2adc2f183f1cc429b9fa43211720f233c3bd42865f4ed6d20aff82e6908d105fe5b243b3742da760bc5b47e7c6

  • SSDEEP

    1536:JsQS25D9WdTq218J01Zh23XH5B4cknMLe+s+uSZWbpONiWJvBi0HQh:WHiDwdTn18JoZh2nZB4coXxSbNbpL6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e11ad50d2a793ec9364d4335194edf25_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2160

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a33560934f14058fc6063a2d5e8f1cfa

    SHA1

    c4cce6e2f9148436635225bc0836f84773a2405b

    SHA256

    3d9148caafae1b6f5ec094947cdcfc7114a65d71a1e7f360182745869f97a235

    SHA512

    f79231d36a6ce8bf93f58032363c47df0b0deb17256401a9e168281019a397c3ae2d085d7ede2e804e769bccb00af72bc0aae0790a6429b2692a05a57868ca77

    Download Submit