Overview

overview

3

Static

static

3

ecc01b154d...18.pdf

windows7-x64

1

ecc01b154d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-04-2024 05:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ecc01b154dbccd4b492b016f09f68c5c_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    ecc01b154dbccd4b492b016f09f68c5c

  • SHA1

    e7977e140c7fa04a17578335aa4030f5c594b4ff

  • SHA256

    06d4dd406f3f34cae721fd6b9136ea210cde71d182945aef8ead3c5da1e15f22

  • SHA512

    8eefca0cae1155d7d09f4a4ef9797411699a67250a3781ee612cffaeb48191c3c35f4b1dcb599ebe61b919958d1a190fc27b60b59bd92e4971d7ef7635f5d486

  • SSDEEP

    768:8Ypzv6gHiqBgo0BdbbsV72zqC6BRyISDt7L8AA5KrOlLMi3rSKInNYpWdRgz8hvk:V96kiqul8V5C6BRFwhLze9m9KWgoh9g3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ecc01b154dbccd4b492b016f09f68c5c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    30b2e2546b646382a7b54ff17212ee3a

    SHA1

    f4b3fe5fe26852df14b77456c9872edda84c7fa5

    SHA256

    cf660f2d99d7fef384926e1777db1104d0fa09249c75c4090fc0761c4833a330

    SHA512

    7e4df0528ebdd114920b8af84e838a662c259dcca7b8a8e41623bea0b18e47881715ddeb33fc41e60b45bb130a9e9857a2bce4ada48d731a0e2e9b17996bd89a

    Download Submit