Overview

overview

3

Static

static

3

ebc22b46a8...18.pdf

windows7-x64

1

ebc22b46a8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 18:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ebc22b46a859ad766148637b53d68671_JaffaCakes118.pdf

  • Size

    85KB

  • MD5

    ebc22b46a859ad766148637b53d68671

  • SHA1

    2d5b9609ec54bb6d9dc177b6a26fe5731f028aec

  • SHA256

    ff026fbb190b026ccc222ef37461291d8bd0f99699cae20873e9d7a9aaf151e4

  • SHA512

    1f73721c7a6fe4b41fa0d64004a9bb522f95827938925024678895f7ee4c0e78976d8f9677e515a6d49f6a73b5efcc0860251600f1ef056dd1c9c914f1a32d67

  • SSDEEP

    1536:X03JEATiRceJ07WkdJshGoPttiFsvtaQZtnoUYWkNpOPgBRkknwp9WU6HCIVD8Y:AtTi3pxXPtcQtPZeAPgbdnwp2j

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ebc22b46a859ad766148637b53d68671_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    23b51922c84c5ffedcf71fd2c4c26440

    SHA1

    08ccf031c51052bcb9305dc2d3e9803560c31686

    SHA256

    19b4ddfbc41879afb4f27015818d27a4aa6cf0fffe4e9499138145704b91c22a

    SHA512

    fcd760ca8fa3e2fcbfd933eae0740a571a4f799052eeb0de21bb2203a2665e350a60d202525140b383ca1d345ea5fa06f732aabe38a61b08a111fa32d624bc91

    Download Submit