Overview

overview

3

Static

static

3

e8a515e1ae...18.pdf

windows7-x64

1

e8a515e1ae...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    08/04/2024, 23:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e8a515e1ae96f5b71fce4930e3e36522_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    e8a515e1ae96f5b71fce4930e3e36522

  • SHA1

    bf6fe427548b094d3def11ad78f37aa26cfb31f1

  • SHA256

    828dd2fa5640eecc53158cee505825e02ea8d99221995f23d108cc61da220676

  • SHA512

    8f5293704cf5e0de1e95fd4e4953ab5a5ece77090c383477a455a8039959ee8343df2fdfb6f71a1ed5dd17cb21ec51c2314b6fc57d0dc0d8aa77e5f23ea39b4e

  • SSDEEP

    1536:U/X+d+/m7KCNjupxpoaLbg1Fulx66i3ZGH4/WxApOGzWaspAjOH+g:gX+sbSm1bgfuf613xg3G5iEOZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e8a515e1ae96f5b71fce4930e3e36522_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    45a15e49d2fc34eced18afe7a134b62e

    SHA1

    35eae169aabb6c31e3bc7b9dc5c59ec2d5f4dca5

    SHA256

    a10bb71cb43d66ebee36f0244623e8126f99ea108441eea06ee2aeae81dd9cfc

    SHA512

    40c6a688ab8fab9b01bac60e949ae9f535151df427fb06bb47358d213a79b60a6eb194ab7f330a28cb3e20566022a21a0f4e732a7c497bcc9f15a6a84f8d3d87

    Download Submit