Overview

overview

3

Static

static

3

e942e11bdf...18.pdf

windows7-x64

1

e942e11bdf...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 04:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e942e11bdf62a1fa605f12ee3b5a4214_JaffaCakes118.pdf

  • Size

    91KB

  • MD5

    e942e11bdf62a1fa605f12ee3b5a4214

  • SHA1

    681454aa0d633e0fcaa35237c06f4a1c001f44c5

  • SHA256

    1482104b4dacb128d5a6867e88032fd3eb9bec4ad4c0d1a3a488d7310c0c370b

  • SHA512

    f1b92b0f38d20da653c46085e05b0f5d0d97c395b17156f4d1d71eb67c23cc5f6352403c0e96e3565c392b7358ca813f45ef764b0d6215bd5b4a6296d1b244a9

  • SSDEEP

    1536:/xSZqvKhGzQ5m5UeegPaCBsDQ6WtcW9sX0oiBBeVbaqZ3H1iPa/332P8O0zDtWkj:UZqvyY5UfgsQoEBetFZ3VicW0OeDjOi3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e942e11bdf62a1fa605f12ee3b5a4214_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    820eddc4384ecbedace153628209ffd1

    SHA1

    517806ea46ec9e98937e2657c77d96190931e555

    SHA256

    4af640af77ca3bf40b33e076c7d4efafa5729a7929d3d1544e1a93e0032a83ee

    SHA512

    4b4844c4cb9bb2ecaa183ca9709cac44f580b22fa798bdaf19009b7e0bfe54003564938f33e5a1709278e68ef2c8d781d4b366e5b203318c510fd1a54521131c

    Download Submit