Overview

overview

3

Static

static

3

e2c4e38668...18.pdf

windows7-x64

1

e2c4e38668...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e2c4e38668a8bb61260a92488632bdc5_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    e2c4e38668a8bb61260a92488632bdc5

  • SHA1

    0fdfa0187ada5ee4e25aed268d39efe59bc0994d

  • SHA256

    93acea33544e527e7417aa2a8abf2104023ae6f573c6f247852de802831f2402

  • SHA512

    e1db86e84bd0e6beefc1ce4e4e33d84abbfa5f7abd98f2de447e5dfee056b39d898c1ac0197f40d030b7e3ad1d0e4f8788068b814eb6f4814cc9ca5a07cbbdef

  • SSDEEP

    768:B5odaUYkxz+fosnPl66vibwgQhRqp9qJrkzumOlkbU6Yqd9m:Cq1l5i7pirkzumYBqd9m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e2c4e38668a8bb61260a92488632bdc5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    859d8f9be730426e27c0f5411b39f383

    SHA1

    01a8e6a42cc3b1f361a7416828ac88c7d6f84f61

    SHA256

    6fa9736572466730861ea9ec71956e9d6837af342d21df4490054d8a1b4e0b1b

    SHA512

    84c9a3017c24b9db32f85c0c0f59884c37854ad936afc06929253368791251c3e58f9434b9ab0730ff617b44d35ce3a7b5c6e6b8273b546df8d7be3f3b6e73ed

    Download Submit