Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
26-04-2024 07:37
Behavioral task
behavioral1
Sample
004adea25e0c8433618b8a7ce0ad3cb6_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
004adea25e0c8433618b8a7ce0ad3cb6_JaffaCakes118.pdf
Resource
win10v2004-20240412-en
General
-
Target
004adea25e0c8433618b8a7ce0ad3cb6_JaffaCakes118.pdf
-
Size
42KB
-
MD5
004adea25e0c8433618b8a7ce0ad3cb6
-
SHA1
f22d0a77989ce701ddc6217659b273f081eb2109
-
SHA256
8c0a877e21416aac094440b70a21312f68493c4c3b7c5a2053b36f173e2f2aac
-
SHA512
74504b7fb92326b2b1f73881dd1e0ca35487abfc8df03d7035058971ad9a1f247dc5748106d384680a4191a7929e310af8439fda7add4ad9cc5820d4de7661f0
-
SSDEEP
768:XgGzpDapNjXKpzKHpC7W7KHd/fvayrv6Jk7bDeBaw2KWK8ccMZ69Igdctg:wGFepNitv5n7bCatKnl9Z66Cctg
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2368 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2368 AcroRd32.exe 2368 AcroRd32.exe 2368 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\004adea25e0c8433618b8a7ce0ad3cb6_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2368
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5c8aac7df2b96cd51e77f40ddd7515f30
SHA1013f544e2022fba2244b4fc884418d214d3bd9d9
SHA256f1d2404e6cb5838e44b14562db9516c7b269fe34fd9bbd36463a761d7bc1cab6
SHA51204f9b805339a275f90cab71dbe144be422ac75fbc045559a7abdba5dcb35af4f8f4a6930c00aa3283cb4b2ea9be4a3943e660a4e30b157a0b0c874fc9b49c299