Overview

overview

3

Static

static

3

e7b9c2bdd7...18.pdf

windows7-x64

1

e7b9c2bdd7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/04/2024, 14:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e7b9c2bdd7d61ef1a22cc41285f1d612_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    e7b9c2bdd7d61ef1a22cc41285f1d612

  • SHA1

    a9d65b24e550793f1c132ec8b2841c89bbc462be

  • SHA256

    c873402541d7ae15d08085511fe8a9782e6e8bd14e649ee12df8044e5df51d9f

  • SHA512

    c34d5f2bd937cc0203ddba70b3051646f6bc4a23cde7f31e6e635c37e60cb9b3bf1b8fb8e71f94d861143b8efb2f6a265c6866bfdff5bdacb9ca59a2376b3b12

  • SSDEEP

    1536:DXzAGMdJ58iYOYpT/BySjn4x7bp/QVpYCxWuAlqmVW8pO7bQ7qj:P/cJCi9YlwmY71IqlqmU78u

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e7b9c2bdd7d61ef1a22cc41285f1d612_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3570cd098978117a3024605b85abd095

    SHA1

    71b75f6fc388051106321698ff13afd7ce15b680

    SHA256

    97938c1980c5ebecb0512e9d59683ab9215e728981d1af29d7d1dc8bb52502cc

    SHA512

    14aff7401282285036b2ef784cb5658bf3b85f2c01a8eab15727a7e4c02c69a5b83cd856cc54d08d50a6df6ef786c41c293f4952cd46ebac1c4f6f9c86df5613

    Download Submit