Overview

overview

3

Static

static

3

ebcaf461e2...18.pdf

windows7-x64

1

ebcaf461e2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 19:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ebcaf461e2d70355f1b60d0d0d6cd317_JaffaCakes118.pdf

  • Size

    79KB

  • MD5

    ebcaf461e2d70355f1b60d0d0d6cd317

  • SHA1

    13feaca2e2e19d93d0ad1ea1f001f0077aa43437

  • SHA256

    0134e790f5d7b250c4fa9ae8ab090767074eb9093e3d4c2e73716d7d2b1efeba

  • SHA512

    e41588e06d96a12d707c83bf60d506779c35d073cf0177328a953ecfb5dbbae7c871e366aa2f187b0447914753d89437f63e0d2d561c9265daa561c57c7ff7d2

  • SSDEEP

    1536:vqV5PrNlwgjU6i4wUPK63uGLPOtOWgSSygUsdz0hXCNWXpO/6qO:+PrNBlJb3VLGQSSygfdwhSn/e

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ebcaf461e2d70355f1b60d0d0d6cd317_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5cecfa50438741849c8bd8d0d2d20e0f

    SHA1

    8cdeff6d1ee94479c593722173807905f356f257

    SHA256

    d3acbf10e93146f4be3104ca493be0464a40ae66fb316215b8150506d04f8524

    SHA512

    59823d120f768171c8ad59f9d967115c6d77ff9083fe973934369aa5b231a48f62e9d2ad4585e67bb59a68a1d48e557f1c94ff93bba86a340aa2573899a4efc9

    Download Submit