Overview

overview

3

Static

static

3

ea8d6b36c4...18.pdf

windows7-x64

1

ea8d6b36c4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-04-2024 07:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea8d6b36c4ac851a8839740c3164617f_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    ea8d6b36c4ac851a8839740c3164617f

  • SHA1

    8d95f2eeafaf769bd6618379ccaf921f9aa5f160

  • SHA256

    72b631cb7d59291a0242b8ba5e23cfc5c3158391be25cfc798e44353b7246e23

  • SHA512

    7e6cca33a16e338a3d51e84667e193cff2f2440a809b0e6af6fbad913c7cfa060523e3600c2febd3b2b10c3693b70594179fe5186d843fd1a360ea271d74aab7

  • SSDEEP

    1536:MmNuFPUFjMansMr5EAbAw9i0xQwxxQnxZ3o4fdFBseqKbqUWDIh0ycVYPeWUpO7j:pPYans7G/txxGvf3ComHIcVYPJ7j

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ea8d6b36c4ac851a8839740c3164617f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2100

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e64880e6b9b9efe037e84d4181abfbc4

    SHA1

    034630c5b10903846d4cb1f4f142d36b8d1d010f

    SHA256

    b1f3f40a6cb538a7482172dbb0bf49ad5fc73d0e32206783c94fd1e25871f944

    SHA512

    b4ac2a6ba394b0de71dc0188606511f7d10af69aaf8f745aee0ed5f2c2fb44848946459374a25a40ffb29c7c546f31cb1b152167a0a10344183612dbb2a4fa5e

    Download Submit