Overview

overview

3

Static

static

3

e13ae71bbc...18.pdf

windows7-x64

1

e13ae71bbc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-04-2024 09:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e13ae71bbcc3a93c6405b2ed7c1ad60c_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    e13ae71bbcc3a93c6405b2ed7c1ad60c

  • SHA1

    27d8e76e99ca656a6b9e3f3e84b78952b801b491

  • SHA256

    50f6c095c2ca08c725c3d15f744a822bb56d8349a2ec13a3f3e4cc2709dd0b22

  • SHA512

    63296eb22913074bd5057605f248c9e6680417ffcc59cdaa59f331303858992caab4bfcb8b27b62876864a04ebb5c15231a3a7fe5f49afce55896946cddbd08b

  • SSDEEP

    1536:Z8NVzAw7Zqg6ZmYpRz7dUDVepEgN40qVqW/tW/wECdoDINm1WcpOmOP9:SNVzA9g6AYnt0VeygN4NdJE4olsm6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e13ae71bbcc3a93c6405b2ed7c1ad60c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e292944db3f4de3a7f0cffd619d6f2f6

    SHA1

    053e6965c1b1f64259c6661bdef78ab31384dbb4

    SHA256

    5ecf78349a2b7e88c0a706055a5565ef689eadfc02ce920108da932f5af28a18

    SHA512

    84f27d85d60c6574cdd9642099d7cb24012c89f3a65d57db88802ae90d8c3cbd80053ead0a3146f47d12959c757214c21623885e8a46fdaae9a4a21332c7edb9

    Download Submit