Overview

overview

3

Static

static

3

eb6014ee74...18.pdf

windows7-x64

1

eb6014ee74...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-04-2024 15:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eb6014ee74444d88404db8d901da24dc_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    eb6014ee74444d88404db8d901da24dc

  • SHA1

    7ba7ade099e6b5c547be4840e4ac75bb5b2112cb

  • SHA256

    f9b3cdf152b19caff869d97631455831885bb4607f1ecf51145844c00294654c

  • SHA512

    d863c815c8c0f8b5b7e11edc64d78b5d916ff176fbf81faf6c4bfbf2b8299ac0e0236814631c10dfb65126051209e57844bdfd086b05a7bbc8f4777474ac6499

  • SSDEEP

    1536:JmJN4FpJbed3XtcFn1Zl6aJ2Ve3Lj2qMCPpkdWYpO212J/EWZrx78TGDe:04VbiXtcF1GaJ28j2qft2QJ/Vrx78Tj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eb6014ee74444d88404db8d901da24dc_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e2a354ddaae6b4b873c183c5f779553

    SHA1

    024e025d08fdd02c756d08aae08170afb5cd558a

    SHA256

    30e2386d665a7a5e8b0abec4acc75582238f4e73b5360ef36f1a45b360cbc5dc

    SHA512

    2a124d61e788e3968de7f32c9f1d50b8713a9a4fb8fa314bfa4940c481d38e007bb8e4fcbf206d67a74b3d5d10bedbc8ce99a9c1d086e2d9b1cb7bfd1edeb4e9

    Download Submit