Overview

overview

6

Static

static

6

28c21ce4dd...18.pdf

windows7-x64

1

28c21ce4dd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 16:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28c21ce4dd23afd7608d338278e3320b_JaffaCakes118.pdf

  • Size

    66KB

  • MD5

    28c21ce4dd23afd7608d338278e3320b

  • SHA1

    9aef28bf03a893387d3f98c8d08119f292d65bcb

  • SHA256

    0c328907afb1939937155bcece8a8462d93b62b81d4eaa56bf2547664593ae16

  • SHA512

    24e9c8eaac9cfa0bb72ef8fc7a91674e2da7849e39259ae9389994e6de542c6e7ba58a5c39b582cdca0f82c35985ac7ce5dd796ff94bea1962b04c6c717c44fa

  • SSDEEP

    1536:Plm7XKAQ4Bp590iRDfXI+duV/4WOpOwrKW2B/AtJK/X:gDn5BNg+dk1wrQwKX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\28c21ce4dd23afd7608d338278e3320b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a8e8b13c9473c1a795d8e9dac9dbea6c

    SHA1

    8c74bcc6020d23a81d311187fd3c9ec6f1611aad

    SHA256

    fd0f2a0d7d5bfe571ccdb757f12c709bfde5d225d7e568ab064d33231db915b9

    SHA512

    a7f7f16dc3a8f1b9e2b8607beb69ddfd9264d8a9bd7279f5f442d839955dc58718f07a33208f07671f56a3678165b7d606c8a677020bccf640d7e419458cf43e

    Download Submit