Overview

overview

3

Static

static

3

edea51768b...18.pdf

windows7-x64

1

edea51768b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    11-04-2024 17:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    edea51768b13dfb3ab6c4399360ea576_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    edea51768b13dfb3ab6c4399360ea576

  • SHA1

    9f5d4f00dc29422bac27e9c9f67545aadc226bba

  • SHA256

    2d3e1ef5ef987018a234713d28ceaf09fc30472722db1867113a75ab0f5fc762

  • SHA512

    8342936cf2cad20e87805fa4920154d503d581b265099556e5b08f057ce7ca140ad39e462eb86a3d92a8e142e6230fa9664ffa3d9abba2001be498404597d800

  • SSDEEP

    768:+YJ/9IezDmehGIIMSbH07KYKbrtZr09qidTxXBD:+YVK9ehqHLrbrwqid1BD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\edea51768b13dfb3ab6c4399360ea576_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4a9ca871d2a7b59762b0c0516343ae89

    SHA1

    f83d86ea207e7bf7e7fb5102e775cb9e837762fe

    SHA256

    e72c43af25e5bc4e5fad7a7beb91879eb35012f11c19fee7ed65cb365de4dd2a

    SHA512

    92e99fb298c1e9a531857957733dc68b943c21e0cb94206333674b6848f3ea20a8ac0f1cba2be6e8dbc8895b62f8e4e434f12ab5fc04b9c4e30853169fa16578

    Download Submit