Overview

overview

3

Static

static

3

eab8d53422...18.pdf

windows7-x64

1

eab8d53422...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-04-2024 09:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eab8d53422529a2805de7f8d20fc12e6_JaffaCakes118.pdf

  • Size

    99KB

  • MD5

    eab8d53422529a2805de7f8d20fc12e6

  • SHA1

    b115e871112329384d46d42676ceb6383b181caa

  • SHA256

    10b4c0827c7ffc3057e8d49da98789f396997d41a0a461612ec17ef25ce56dde

  • SHA512

    45865643431a9b8639e9771bc2b001a93a8e19a3dd94466295eb846631408b3139d9d27fe98d08c0fad069500089236bdd3cc3eeb7529c26cdffa53df8231b48

  • SSDEEP

    1536:jaHGWOGKpkcVRM9XAu+G8XLgLAtWHpOvQQRV2o6Wc9l3irF2c/k/WUqNtB1H3hNn:msicbaP8XLgLOv8oooZz/kdkjHxNTYg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eab8d53422529a2805de7f8d20fc12e6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4a4c2d56ff9cae5f50d65963b77e437b

    SHA1

    248dfd81dd63bccdbdf3f5d4ed845d28f7639f87

    SHA256

    7950afff5a0301cd869ae8933813ad1e86e0d2d5b174b04f791330c88c43ce41

    SHA512

    f92ba50eb40aff31015bea139ae3f6689ee18403b4d1c34c95b47d76fdedf4951b0618cca47617c9e79f77226b3e384d46c92d32e9bdb5dcef1d2692e56ab19f

    Download Submit