Overview

overview

3

Static

static

3

eccf417d5f...18.pdf

windows7-x64

1

eccf417d5f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    11-04-2024 05:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eccf417d5fd47d691ea0c550b9d7f073_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    eccf417d5fd47d691ea0c550b9d7f073

  • SHA1

    764deeb282f95f6eb5dd7c56de3607c8dfadfb92

  • SHA256

    e6ca45c9a9eaba99ee7f87e34b77a891232b1a26c8140a5a2f6f88919d3d255e

  • SHA512

    9c6b5a23658a14cdd5b361047d08f38972ee9b3892078f8a077eed6f2d0fdf5ba7224b5887890c7529e478aef196902abb746409a285f9fb1bbe0b55c4fd412c

  • SSDEEP

    1536:75KxrlDOHj9SjdgzwyqWRsaaiQ2AWBMNKpLWZWbpONWyXXiy7gRV:dKq9SG8yqBaa2ygLWbNWynrI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eccf417d5fd47d691ea0c550b9d7f073_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    960f88010734dfd61f04d493cbe6c3a3

    SHA1

    65738a32b8aec4fe6c9fda65a2cb94441020f94a

    SHA256

    36ae07f01c40b2afbd81f999e5509cd158dcfe8bdc955a8fbc36359480f37a3f

    SHA512

    25db82e77ded093efa128500d707f98bb10ce18f3f8d93e197ff8b57029293b4342992851b486791aa2961b4d64e631792e533caa57f18f3969ee06aa86d0e23

    Download Submit