Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system -
submitted
21-04-2024 18:05
Behavioral task
behavioral1
Sample
ffdb2bc78fa0a69eb991e6d13a6ffbe0_JaffaCakes118.pdf
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
ffdb2bc78fa0a69eb991e6d13a6ffbe0_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
ffdb2bc78fa0a69eb991e6d13a6ffbe0_JaffaCakes118.pdf
-
Size
84KB
-
MD5
ffdb2bc78fa0a69eb991e6d13a6ffbe0
-
SHA1
bfc93c075274edac7f994bc9722e587e4c413e04
-
SHA256
3b52cd6c69a6240985c573f565c53a1bd51c8f25f2dab1d8866a132b7a435db6
-
SHA512
b987223343b8aa8773346162ca73839c5173955f999528a1d528eefb54f53b811c3bf2b82b3e1378c18c7c414cd88ae26a329e0b1c21488ffb3a97b67e46215b
-
SSDEEP
1536:UyKB1Ng6p7KXH5q3o4SXBNeJXIrRZoYYvMyG2ZBm52L9WDYFCb2+iNWOpOwreYFd:rKB1NSUDGNGXCDoYYkyVZ85CIbiqwr17
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1708 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 1708 AcroRd32.exe 1708 AcroRd32.exe 1708 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ffdb2bc78fa0a69eb991e6d13a6ffbe0_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5a5f6b6d6b48e4e613e90f75ac16959ed
SHA181b74c190e4ccdf315bd0b9b3f06b5814be752ce
SHA2563151356f99ddfbdfc83d8071aadd74238e86eec09c581148f28372dc3670546a
SHA5121645e5b75edf387a84357bf2aea8e91f32c7ab0d4c8b41ee3aca24375beaeb06cd954e6bca0b59682c93b7851519c1c096996db5350fdf8485ed7d909c6752bc