Overview

overview

3

Static

static

3

eb3c8300c0...18.pdf

windows7-x64

1

eb3c8300c0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eb3c8300c00933fbdf252e7e4508b3b7_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    eb3c8300c00933fbdf252e7e4508b3b7

  • SHA1

    6a4b55377e1638f806d45307fba3503bc8cf4b28

  • SHA256

    07b22136633a4b56074f2c8fde0b2f605baa806b7287606d124d422148be03fe

  • SHA512

    5b8088ae578c5d296ccebe54e2d2a502f5049a30e85e3dc51a656cfebb13bcce57b5d612e593b4af6eeb1169dab183650e987e7c0d7bd6c777a07c6a41710461

  • SSDEEP

    768:ey4BTqIutZYT8goRXjzztDHdJWAesvSe+S0G1kDI1WA4W2ye6FV+BTQ42g7:ey4BTqISZYT8gaztDHdJWAeIqM1W5yeZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eb3c8300c00933fbdf252e7e4508b3b7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2232

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e6c9cdea1689a1907be141fcbb33b67

    SHA1

    c233d1c854c1f21bc90a1d733070548d0bfaf556

    SHA256

    b80e3247df6d5ccba9b207f0e4fe1bbbf939d44e6d07bc62353de541829b930d

    SHA512

    d59dc16e3a8ff683d1cda5b19cda1e3745cc2ebdc4d54f014785248a30bc35386b7e57fc5955f906f5a15e115da8b1845ab1da0a7d236a16e61d569d0e2e73b3

    Download Submit