Overview

overview

3

Static

static

3

e72cb18b05...18.pdf

windows7-x64

1

e72cb18b05...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-04-2024 09:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e72cb18b0564c65b39e0cf0823d0d47f_JaffaCakes118.pdf

  • Size

    78KB

  • MD5

    e72cb18b0564c65b39e0cf0823d0d47f

  • SHA1

    e27bd29e91309ecbf2a79bbaa72379c375ae948a

  • SHA256

    c9e272fc14ff88e9f592f6d70be2b2532c649d9da9cdc0a0170a483f654a1c3f

  • SHA512

    763a58037b11fd8e1956320415af348d790de8bd8dd9f5a5adc56871cca12c1233c1e3c3f3b70f2a808cf6f195de025262469f5986f05e2c090ffeee69166109

  • SSDEEP

    1536:Uw2MghKExsggICcyUR1usrIt0iGJSrVWkNpOPrLoFfRWVedDAvhp:N2MghKV8Cc1usrIGiYqePIFfFDAH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e72cb18b0564c65b39e0cf0823d0d47f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ddea0bcaafe86f3d5dd8959f59b6df06

    SHA1

    3da74301cf5e7d8397611096f522e48c99c759cd

    SHA256

    881d92bb22ef2aa11b739b891dedf625e7e7ad93143b0da3340b68db346e169b

    SHA512

    2282fbc12f210e7edae9a35dbae0099b4e0c3aad59f6d9843602ced4dc23fd67c96c0163b18fdd3ed2d2848489ed133c030293fafb70b415c76a4818aedb3694

    Download Submit