Overview

overview

3

Static

static

3

e2b4164bb4...18.pdf

windows7-x64

1

e2b4164bb4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 14:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e2b4164bb4526531cc104a9aae6aa1b8_JaffaCakes118.pdf

  • Size

    78KB

  • MD5

    e2b4164bb4526531cc104a9aae6aa1b8

  • SHA1

    26e266f1337b6687014b877af7fc37f60bab26f3

  • SHA256

    0f865a77be76c522b55602c0566d34d40fc06dc026ac094bc4f518cc6d944e41

  • SHA512

    ef2d19035a43333fa4013b7571dd02e522d13d4a480ae15aa7adf06729300bd19aa5da65df070ffb3484fa16ca2dbc09763f2e087138573fc5267607afff2c98

  • SSDEEP

    1536:hT4zZT5UmPvgdW5g7a0bL9lsgsRXogkWCpOViIWBcV66ZVmC2cmk:tmT51HgdIXsZlsAOViaAEmCN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e2b4164bb4526531cc104a9aae6aa1b8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    72357b186e6ee091df1053d9babc3c1c

    SHA1

    5f29cc153d08de3fa933a9d868c539726458d10c

    SHA256

    9a0463a597bbc0055b5f2ee076f249b33fe979c93a31fe25fe57173c3a74f67d

    SHA512

    6097d5efbcd324fd583f068c6e1ac88d0c5e45bbf34f2feec1910761af9a0b01559b7a437ddfd12729aa4916ea8a02210ecb3f7edba5fee2eb8ad8bc6099ffeb

    Download Submit