Overview

overview

3

Static

static

3

27cc5ad610...18.pdf

windows7-x64

1

27cc5ad610...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 02:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27cc5ad610483e06b0cc6114969a29c9_JaffaCakes118.pdf

  • Size

    15KB

  • MD5

    27cc5ad610483e06b0cc6114969a29c9

  • SHA1

    37372e1de1b1d7b2806e05301bf2264ecc330ae1

  • SHA256

    b56ba802cd7c51e8535738dae389921bbd1d4cd77c2537a80a0942ab0e090c15

  • SHA512

    9b7c6553f6b1968984d4ac909e0dd0837458a1abb490b6dc260bf6a07668eaa13ea808ef29dc77d08e51821075358a65cc1278e5fb41836f2215e075ddf3fac6

  • SSDEEP

    384:VzTQfrWC+Uz1vgmU8fxmJuomX9W9In70r0zgUDfIvX4vEy5iP3dPD1jRMz9cKngT:VzTQ1+Uz14mUksJpO9nnwr4ovX6EAifv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\27cc5ad610483e06b0cc6114969a29c9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0e916ff2507cec38c9180f5774fd8b16

    SHA1

    bef068a2322847a2b092fe0c00b490b1652c75ed

    SHA256

    4ccb9d96286da571eff25b87bd9bcf4acd35a868af3eaf1ab693fdb2f6151f26

    SHA512

    c69304d23ffb24095d51de279abda14d3a1dc41db4b5c0ebe8c9073188a105d47f98c9e6b794c27ef70ca413908ebb0f4680ae465b6b78c21245af7b811ad457

    Download Submit