Overview

overview

3

Static

static

3

e9d106e1ec...18.pdf

windows7-x64

1

e9d106e1ec...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e9d106e1ecbd7ea83a1989b629f341c6_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    e9d106e1ecbd7ea83a1989b629f341c6

  • SHA1

    2183791903397eaead4cc92aa70bf42f844afefa

  • SHA256

    a703acecaec0559639ab22b1394f440936e86bb4a4ee6f590095e25482a76685

  • SHA512

    f831fcafc5e32d1388acc7d905f2b07c58481134eebb2c26db32ad31f1e09c9625c5ee199d4e78288f582fe97b1a1ca6aadc5f05575a0b2858d95b7f928d8d68

  • SSDEEP

    1536:4CkYiCr3SsqMRneBwU2nCQySihkGRGbt/JDz+IapmnowykYd0EHWaunlg1b4pGwJ:Bkwr3U2nCKihrE3+PmnHYdRpqa18pGfc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e9d106e1ecbd7ea83a1989b629f341c6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    19542e622c485e5e73e354f04bc16d56

    SHA1

    0ae84a0aecd0b6e01f4f4444156525b639c86045

    SHA256

    86374717258d449acb0a6c0283bd40f6c19d6f4d0bda5173e4c993c8f0f72a12

    SHA512

    4084f34ccabe7e91c7bb086b0f1788d6934434f4013ff44bd009b58ec8511e39c3798cf5b4cd09421ffaa98dbfebbb85fd5a500491b2e334aaa55728e4e6d553

    Download Submit