Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system -
submitted
26-04-2024 09:21
Behavioral task
behavioral1
Sample
00764b93056e2d3bbb633464e7d19e4f_JaffaCakes118.pdf
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
00764b93056e2d3bbb633464e7d19e4f_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
00764b93056e2d3bbb633464e7d19e4f_JaffaCakes118.pdf
-
Size
52KB
-
MD5
00764b93056e2d3bbb633464e7d19e4f
-
SHA1
0ae2ec95afc8b9a2995d204c57fc01bbf87e16f1
-
SHA256
59856a5954933bfd7622b3d14f0da32cde18079cbeac2876d9da3b017d19cefa
-
SHA512
bcb0d34a9ac5954cde19b149887e60bc109019d6aab8ac5df2f161344a05781635c32ccb9e9a9662c65e95266299e66c8d7c9c9f45435ef75495fbe30f81dd2f
-
SSDEEP
768:ugGzpDBprEPFzeYnp9caTpn7co7EE1v+mK/PKPYWE3/lagU8Ubii19oz2LV/e6tw:LGFNp2p7cSGmK/PKPYW0Nahj1TepXwGp
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1876 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 1876 AcroRd32.exe 1876 AcroRd32.exe 1876 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00764b93056e2d3bbb633464e7d19e4f_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5a0b0fb3f865c9792d5f802e9f34a1131
SHA19763398a5808df7b31e04b953ede5f09d60204ea
SHA25684c921e972be71e67613b5a0040339aa50d8ffeb95eab9304f4922223cc37744
SHA51205fc37f172e734d986f0a5da51abf71b51e6d1f5862e4f8bdf7b895c91ce67241f4be5b83266b1869d9486de289a803d0b4c7a6ef5f458b09d1d8c17ac854085