Overview

overview

3

Static

static

3

ec29e104cb...18.pdf

windows7-x64

1

ec29e104cb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 22:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ec29e104cb339a5ef97119dfd7b75c24_JaffaCakes118.pdf

  • Size

    88KB

  • MD5

    ec29e104cb339a5ef97119dfd7b75c24

  • SHA1

    c8b54bf91c36830507400aa3560e40001d0830b2

  • SHA256

    91068e3fee10ff830ab1197591be18506fb56d3e1d4e9e9278d4bf32acb0dc2d

  • SHA512

    e4790e2a3e013698a830a213ddad3459aa0645f6cecb71ba2f55820d17cc4db47a3454a64827057be2e8d73cb340ddf575e6170af5b49f1572f494cb0af86632

  • SSDEEP

    1536:zekHILOM0IiFSQwwG+iy9aYnqGzdD/iSDlcKGW6pOu26WJm3PWFfE1lfI:Ckc30vtwwGCaYnq+dD/9RcKDu2LmOFMI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ec29e104cb339a5ef97119dfd7b75c24_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    78b6201449a37b21b9ca7696567c252e

    SHA1

    ab01462ef254bf374696c6daa52d26e8d971349b

    SHA256

    a000470e65c80e310f22741e459f1e5f69ea21c6099c93f30567e5260ef55eba

    SHA512

    1e6fcb5c8f03cdb5d39bf5db6cff77f6d08abace2bacdeb1b45ce8c6a3187ed5e25908e4ef332681b9b3b1ff9b7dc65f01287c15210f998a50f9d8b570b87967

    Download Submit