Overview

overview

3

Static

static

3

2827eec900...18.pdf

windows7-x64

1

2827eec900...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 03:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2827eec900fabc0e7a9fb01440bd758c_JaffaCakes118.pdf

  • Size

    17KB

  • MD5

    2827eec900fabc0e7a9fb01440bd758c

  • SHA1

    5ea9346c8db8f5161467002297323d1cef0b14f7

  • SHA256

    60819f5a0716523debaa5fe5eef592a54430bf713081fee4525fe4ca15bfe2ae

  • SHA512

    2b68930e345696755e31e6b43ee8f2a3c5469508c4b28ab35fcf14868cfe4339a9c1dab4fd144403512edb6bd64601d525ba966d76925a4fff9fad9500ef7ddd

  • SSDEEP

    384:VzfCltHC8z1HAQjfc9m+cUHTINrbqzbU07eldYRqoLc9asM/ev3+8fQl9y:VzfClNHz17QbzwrbqzY07idYRqo2aT/c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2827eec900fabc0e7a9fb01440bd758c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    052ea4f8e96278cd6179db56fc1be33c

    SHA1

    c88dca25ce449fef85ca2fc5e0e668cd8b0a1de3

    SHA256

    0d0b0924ecfc29d43524e6ceba32322b54a45f88f8725a2ce27ac1894c7d59ff

    SHA512

    07d8a0e7e607c5b20692b9ea49e34fd62894d8346f89a05df1f0bcb4a9fd8446e1d6ab4e89b3aebf044ad5e3c9a05b739a16d70bd4c93324bc1ad2576c3c633d

    Download Submit