Overview

overview

3

Static

static

3

e9c91930b0...18.pdf

windows7-x64

1

e9c91930b0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 10:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e9c91930b0075c9c4fd61763b95492f9_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    e9c91930b0075c9c4fd61763b95492f9

  • SHA1

    9234d4558387a1a1ce42d2fabd0b4d24a837499a

  • SHA256

    a58310e72d4132f8be22550e880177916faa53e0660680c8be98f71ecc0b41b7

  • SHA512

    b8597f540cf204456476825e9a1fce243d9956df04795f16443dda7cf4aa8e38c908af54084151ab8154a596708dedf1a689cb4fb613debe3f7a882982ac52fe

  • SSDEEP

    1536:IVPtAAAOXm3oiid1VGdzGRmfQL3x6Bv3vlutPj8HOOZWnB6NsAnChrWGpOm7B5:6V4lo1c8RmfQL34vtutb8uOWBYcgmH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e9c91930b0075c9c4fd61763b95492f9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1788

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ffac0742fe7d610f917f7d63b529a421

    SHA1

    cb8ee3988f824eb659307d5a19e16dacbaa64fa7

    SHA256

    943584ac882849f04f0753b0df37b6bf7b6709b0badefae5b6861999e0b84f29

    SHA512

    395a2fc762f64fafbf4a7b5d3cc1a01b595b426cf2a3833158ffa4ce555a8a8285db1d0689b9b7c1abdd7119e6a8ab233ab06447889ec08430526b41ce4905d8

    Download Submit