Overview

overview

3

Static

static

3

00827fd4c6...18.pdf

windows7-x64

1

00827fd4c6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 09:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00827fd4c61cbddba0c28f937a9f18ef_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    00827fd4c61cbddba0c28f937a9f18ef

  • SHA1

    8378a7e5e5eb32a3645701a89248536680a33666

  • SHA256

    1891e8730952eb37dabd43e9fe6b78162afb4c7cbd004f71e01e05e709e1e4e3

  • SHA512

    52c106cda62c8592e414c8ba925e1eb1c4a7bd51e44753a3a8336178751f42259ce65b4532893f22e21f5b732e457a525d69ab12532cbdf2ab71aa2fa2087924

  • SSDEEP

    768:PTYJnzidhlfb/hC2pl4ETA45jPJlP1yJUEcV1OrAT5/HlelwIYhW9uBR2X3jPMHS:ldTU2n4cVlP1yJUEcV1WAT5/HlelwIYk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00827fd4c61cbddba0c28f937a9f18ef_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1f21622d8b2ff4b24226f48ef6f553d3

    SHA1

    6efab32321a829f20b8d83c8a05b25a6520ff612

    SHA256

    a39723d69931df254d2fdb61d9878174451724b1ea0d82c021652406daa986a7

    SHA512

    c3bd3f6f6a4dde9767c9cf23ef66725b335f814c4125d85985d4eef76414d7c364ab0b98d4bcea58fdf495743ac79522e5459049f5b83abbc29cf51ff5b3b85a

    Download Submit