Overview

overview

3

Static

static

3

e031003429...18.pdf

windows7-x64

1

e031003429...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 08:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e031003429f1a0a983c16b6d14b581f2_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    e031003429f1a0a983c16b6d14b581f2

  • SHA1

    dd1a7fa6fb3027b0bfb61ffe4706cc94921a055b

  • SHA256

    403190544c80fcb85966bd82036a578c680e84e2d60422e9a85823a0715f350a

  • SHA512

    210e77b0cfba60ef1ad6b7324197007a3fc6c0ae52cda1101c4d7547ada81d98447fa0a74e7036f13cb8d8425b66e1c57c1da41b85ef115cdf96ffe9bf62742d

  • SSDEEP

    768:vLrKF/3Iai2PRv1nmvd9iE1kjAs3q+rp1yIEiXB+HvA3GSbrrL9K:KtIu5zE1fQh1yK+Hv8GSnrL9K

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e031003429f1a0a983c16b6d14b581f2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a7cc6df5d822c5b81622b06d457f9a4b

    SHA1

    a3b93d7372451a0957788791d5957c1b1cb87e5a

    SHA256

    f4a2dd55db89552eb50cf673622e92a06615443d7fae68bec68d625faaf6089f

    SHA512

    255f91c7347e3104b50b165f9a45d4f436fe2660efcfdf4b95353771259e8136650dbcddaf086ab33194d1d1d7c5b70cec7cdb81780e21644351deb5a949e017

    Download Submit