Overview

overview

3

Static

static

3

00727aba6a...18.pdf

windows7-x64

1

00727aba6a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 09:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00727aba6addddfa9f7e1e6e6fecd810_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    00727aba6addddfa9f7e1e6e6fecd810

  • SHA1

    dba11cab3bddf1ffbd27527643904bdecc681b7f

  • SHA256

    e143eb76032ef31cfb8e5ae8d01fa578dc2ad049a4992cb0546ca8fc720d0520

  • SHA512

    4b5921bef0db5a8d3b9071a8644f5433137e9fff919ef8bd16ed9762986783cbb1cf9411400c59ece77e62da47fa198ebd75d3a304610a6769cff36beaf9754b

  • SSDEEP

    768:wgGzpD5pFBh4edW1AAyq/ByJmYUUua9+Mt0HmeVg85rhRz8E/rZ:dGF1pkAAyq/ByJmzU3+NHmYJ5rhRoE/F

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00727aba6addddfa9f7e1e6e6fecd810_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8bd5175c4e022735cbe8a294881e0bfa

    SHA1

    57dd022cc79d436248542e51ec86ebd051703307

    SHA256

    b6b8bd5f4a5c134b2c555408a2a5ee8243bf685bc07e253cf73b22eb3b132375

    SHA512

    42a3c16b21634e193a56d66941e88bda6efcfc079167d3dc20f65aadc2fbd2bf378f96297e642504f511d702d4bc063ce730a95221b3d622d7d4a288371f6034

    Download Submit