Overview

overview

3

Static

static

3

e13bbe6736...18.pdf

windows7-x64

1

e13bbe6736...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    06-04-2024 09:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e13bbe67360b36abfb00a58c915bc5de_JaffaCakes118.pdf

  • Size

    96KB

  • MD5

    e13bbe67360b36abfb00a58c915bc5de

  • SHA1

    5e55693c082c63daa2905ef2e336c6b45b0b7dad

  • SHA256

    811d451ea4d2eb57f52b6ddd1e7e406b0d268b7bb3ad456de73cb84744c20e82

  • SHA512

    ec6719f6866750f8a91c38575f5f80e8e0a61a4acf8e8c2845736e3e5e8cac86e024462b4282431b1db3aea03981930dfcf93bc42c6ee74f80510f4dbf8039c6

  • SSDEEP

    3072:bA1gXFHCC6AVJUHGZlow0R37dhmLe/xj+mOX:0OUxAXWGYt5ue/hU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e13bbe67360b36abfb00a58c915bc5de_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    010e741fd0ba6d02c6910a0f1dec5d5b

    SHA1

    2660d36a2d44499d65fd68f0e80108f784db9146

    SHA256

    f5d36a0aa2d172464cc7a7da99e2752a73297973eed019c86a0220b0fd325115

    SHA512

    81c84d9b691da4c66ae2126e986bb090ab61165fd1bcec95104fd2aa58cc06c958717e4d06c718505dc438664cfe87315e258621a02f31c420c4553dd133ccf8

    Download Submit