Overview

overview

6

Static

static

6

ec7aa13215...18.pdf

windows7-x64

1

ec7aa13215...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 02:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ec7aa132158312e21e8d218a004091f3_JaffaCakes118.pdf

  • Size

    20KB

  • MD5

    ec7aa132158312e21e8d218a004091f3

  • SHA1

    4fe8855a4924a9b247a47343afa0b60d2beabc6d

  • SHA256

    9ac136afa47c2c21c18584579026833dbfaa81278c1bb682a591cbfa342ea764

  • SHA512

    45a7a6b2ca7175eafb1fcc6af08df47016834abb7c35899ec06c3543cee6a4e54fa7f17eb0d74b8e6ce2568738e0b5e20697557c07edc3ed3466c676183cc1d9

  • SSDEEP

    384:zc0uzHoML5ys61NzIkachwBjbcKyPMcHaH9ip:Y0UIML4sAN0kaBjwK0pHoQp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ec7aa132158312e21e8d218a004091f3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9fd91f3db8f57900b13e86c59fd4df18

    SHA1

    7df3822874cd2e03007804ffa064eea12fbf0908

    SHA256

    426773722f3a6f94ad53d397965950df0af2b56112273f3c01ee38b0dc09922d

    SHA512

    8cd0ce70024718817456f83c88ca862660d6f888281a302f80d38cb61173c2883bab08d3b83fe1b64bf97bdbfc1529cb17c578aebd78384510f1823ce6cd2ea3

    Download Submit