Overview

overview

3

Static

static

3

ea26608868...18.pdf

windows7-x64

1

ea26608868...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09-04-2024 14:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea26608868ead09bb5f1505e710964da_JaffaCakes118.pdf

  • Size

    33KB

  • MD5

    ea26608868ead09bb5f1505e710964da

  • SHA1

    77be748d1c735d21a363d8de9be26fad37e45f3c

  • SHA256

    308b287bf7dd24bbdea3c34845d8fabe4849997314cacdaa458defd19f5c9e68

  • SHA512

    62001a441b7799dde9de215202a80c71a59efa7629007404c916e940181be2b01ebc04006f6d126b1383770153f8f32a65725d0023701915c1d19a5862791f0f

  • SSDEEP

    384:FsFlS3K6XgKV7cAgdOpW+0WzpY1/Bd2YdVgE2+hJIVevoCUShiuXH6913TxmrJBv:ZgGzpDNztWiEnhJ4l8Xo6H5UNs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ea26608868ead09bb5f1505e710964da_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    43928099a267d427725640d364be999f

    SHA1

    6a6d5d68f4bcfb66a68a19dc0a8c70cdc4db123f

    SHA256

    12011ec30fb7f6e05052a65300889f58ca1fe2b77ec5aaffa3383414e561bc5d

    SHA512

    3ab6405fc356485de717fae4c1e115bf7ac9e4cc17d53d7388d0a4c5180ca2ca43a9d819eef5c01263381080daa5749fb765336b8a57a62cfb28d525300868dc

    Download Submit