Overview

overview

3

Static

static

3

eb931c3461...18.pdf

windows7-x64

1

eb931c3461...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-04-2024 17:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eb931c34612581d7db9ebc5780f72923_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    eb931c34612581d7db9ebc5780f72923

  • SHA1

    b7cc0e7c98e3cfcac1328366e9bfaee1891e84fe

  • SHA256

    cfa469bedfec62282eb9f3e4174e0181be92b58a8c4233fcf0c93268ac347fce

  • SHA512

    40730e4d594dfc07efdddf74b0d5f49ab47747da16253fc1efffb7d7abc1db07072136af204650b6a4b06c6388a65d32803d2b1588530de47730b15f15ad6c19

  • SSDEEP

    1536:OZHGELm2IewhHktPGKNSTSd7LUxncsJRk817fPn5HA5AltbXEWcZsLNmz:TIm2G9gSTkUBH5HAq9XIaL0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eb931c34612581d7db9ebc5780f72923_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8b840f71b7864fbe9de54aa269bd2629

    SHA1

    54ae2d084df8a02f1f8a578009e8256a972a2d06

    SHA256

    5b676556d256c0a3214533e425f952b32bfdfae1da70097b86e3c94201db206a

    SHA512

    1fac567ff94998b6688cea2ce1d9e82c62d9bc9789ef848884feefaf0f57545aef4f810ffab828168af92abe28850851b5bc33b5837c0b82e4a6e15069271c44

    Download Submit