Analysis
-
max time kernel
122s -
max time network
127s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
28-03-2024 14:05
Behavioral task
behavioral1
Sample
07780b05bc886ab6123c7dc8d75acd27_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
07780b05bc886ab6123c7dc8d75acd27_JaffaCakes118.pdf
Resource
win10v2004-20240319-en
General
-
Target
07780b05bc886ab6123c7dc8d75acd27_JaffaCakes118.pdf
-
Size
87KB
-
MD5
07780b05bc886ab6123c7dc8d75acd27
-
SHA1
c0a492e44509a01244baa0888df1a5b32c46f879
-
SHA256
60153e8891d6a90df87f0c86488849ffd39ef367ec0f282fe1ed6ced9dcaee43
-
SHA512
bb759a50ddd279e68acca89aa896d7b09d51aafbb2c23917a27664b3ca06949e7c91960ca24bbbe60d4f49ad86bd33dab0d17bb03b8762a8c4fbe0878cc3b2f5
-
SSDEEP
1536:SH7/n3rWi6JE1mOHAH7aQsyZUcJcXEWVILAekksCjXFgUjA/WXpO/EWZQo1fhbJr:k3yi6JEtAhsKUCcXjQAdCdq/tQo1ZbJr
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2612 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2612 AcroRd32.exe 2612 AcroRd32.exe 2612 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\07780b05bc886ab6123c7dc8d75acd27_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2612
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD589945f698795ac4f7c8af776a392ba9c
SHA19e250575104961605cd0952675fca27e86a2b155
SHA2566bdb269e1ed8d99ac55b287b8576acf3ef087bce6bbc9b94a382ab0c76c079aa
SHA5124665efebda49e823080a1df567bf2dee4d4f2ef0ce135ed331bac753b37d3da8dbbd63c0c21aead44120d969885c6a65d3b59803697689e7ad2abe549e563a8b