Overview

overview

3

Static

static

3

28b890497c...18.pdf

windows7-x64

1

28b890497c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 17:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28b890497c6cfd11f4a485dbfcc1a9a5_JaffaCakes118.pdf

  • Size

    90KB

  • MD5

    28b890497c6cfd11f4a485dbfcc1a9a5

  • SHA1

    9ac150e57caa56c7070b3ed174429dc51d64a2b7

  • SHA256

    ab378263a7076d01798074a8e761c17575581882327e5246d175df13a4188f00

  • SHA512

    02e4a74d59706ec734cb13da8b0bd4aae8047b34fd42bcd09054b780bb0e2d633550881853e5c888271ae4402df06168580aa987841d1fd365f1894c3c04d9da

  • SSDEEP

    1536:HQe8wc1DAewXbtoWqu9bpjjYJjz/S4wuUWflJYJW4iC6DBYV1WqB9NS172WGpOGW:w3wcFAewXThNpjjYJjouUQlJvIVxFS1t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\28b890497c6cfd11f4a485dbfcc1a9a5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eb7c8908b843f8599b3f6b58d058afee

    SHA1

    0db3aa2b39639361b599dfa4c8bade903d9ae81f

    SHA256

    eec926070758e610313b16fec513c74c679bad97b2d437fb8b798962eba284ba

    SHA512

    cdff89e5234424d31f9039760d3aaf47bc7962de14d305a8cdcaeccc69f54d90dfbc4d297db6ec4cccade73005d3b80b308a3221362536f3cd00bd5bfac0a2ae

    Download Submit