Overview

overview

3

Static

static

3

1e27cac42d...18.pdf

windows7-x64

1

1e27cac42d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 09:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e27cac42dbf81156348658ea80fa7c3_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    1e27cac42dbf81156348658ea80fa7c3

  • SHA1

    bbe6a8c0bb34a860fe5551897eb16e79842da43b

  • SHA256

    f851e2a2a644b2cb245fe2bf78d4c8342065e43eb71af521dadc988abdab1da2

  • SHA512

    f60b3590cedff30fc218d8355da4a5638bb83d4cb3c077b5f53b62668fce0685313f40b1980e276505a52b6ce7bcfb698cd58b05b9c2287cac02ce462c0778e2

  • SSDEEP

    1536:3L6JkmSCK+T+kKXvCzw1UWgUXMxtzzlHw9mXS2AB0/vkF7iuhX4sW0zS5OiVqTWV:76JknCK+63KkUWDMtZXVAB0nK7im4ixK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1e27cac42dbf81156348658ea80fa7c3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e6e699915c5d9f6d38ccf815fa64b314

    SHA1

    d70368b501c9d0a8f9ba797efd447708f90998f4

    SHA256

    88750f92e7e2712ba3e23f2ede679ec5b0802b3060479a071110de9a1d3d5944

    SHA512

    6453dd76dbedd9085426787fb273081f2b51a7e58bf8c409aebb0702084b84aec71384dceeec0d1ab58b4760c953d010f0b9d00c80cbae26d8b12ec724db5496

    Download Submit