Overview

overview

3

Static

static

3

e8c6eedc07...18.pdf

windows7-x64

1

e8c6eedc07...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e8c6eedc07d1d54b43f41c92ac9dd897_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    e8c6eedc07d1d54b43f41c92ac9dd897

  • SHA1

    623598aaf6607156cfe355eecdd396133dfa7aba

  • SHA256

    0c9b27ff7d005cbc62af5c908e38e4df11ca40ecd46d72941d57a1ab3e458103

  • SHA512

    be6b54b33c1a650d575fba474b2a004fb3f1086e9aa8627853c80416a4323c1e9b019553bed648be9a4c36fd4e56d4dacfade9b6db1ff7c338a93bdc32441100

  • SSDEEP

    1536:V70YWks549YQhjvfXwIYC4Ii6ToiIIi6EArWspOur0wTsWQ+ywQ:Rbi5HQhj3gIT4I/IIgAaur0KHm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e8c6eedc07d1d54b43f41c92ac9dd897_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8fd9697ce0852bced0b895ee752b27e6

    SHA1

    2966aa2569f5df596f2e140aaf2507a3d3d56400

    SHA256

    0a6b6093c11e86bfcb08ca82587e970132b6d2c4e407cb1feb5bbd1e07fffc18

    SHA512

    1b00135bd12d544d1598d931beb0f245f8f6177acd932de1a7653ca7a238e3969a6bd0553287e8b412307c2d73936c8d36043196d140d9f8e3261e11bfb4d02a

    Download Submit