Overview

overview

3

Static

static

3

00e727997b...18.pdf

windows7-x64

1

00e727997b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 13:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00e727997b7b355f7a6e687004848090_JaffaCakes118.pdf

  • Size

    187KB

  • MD5

    00e727997b7b355f7a6e687004848090

  • SHA1

    bab94a616c66b0136ec506de988becd5fc7e8b7d

  • SHA256

    acd5ac462caac9d521d90eab7617114b47cf1c3e90f1121c2e8f6303d26c5c55

  • SHA512

    8883e04cb545dab7665e2d96c9c285fed03f04dd9726760fa76710c1c55e0594788b038eeb610b40df4ef9690c2b58e2bfd4b3265f43939bb159ac158ab9b91f

  • SSDEEP

    3072:T2irbxzGAFYDMxud7fKg3dXVmbOn5uQ6KjnHSmzeUCvq/1GlGqUYSN:T2MKlWQ7Sg3d4bO1ymsEGlG1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00e727997b7b355f7a6e687004848090_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1776

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0f899008f5c9b6f73178616f3dedb20d

    SHA1

    0e4d0dc9a3f212a09c6860932eec696d3bfad12c

    SHA256

    8554a4e3faa1275d3410b836fc59b44d12f3b1c7da685ff05c37d9ec9ea5f287

    SHA512

    5e4d1191a114d88a83b3296d2f3455119948e4a8adbc3043a2e811c22b9cdbbb405f47dc86a1caf6e5c3ba7bc98905139dd39ae3d6374b914b7fee14daa32ae2

    Download Submit