Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
26-04-2024 09:32
Behavioral task
behavioral1
Sample
007a74d3530fbeb6ffcd4153e659e4f0_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
007a74d3530fbeb6ffcd4153e659e4f0_JaffaCakes118.pdf
Resource
win10v2004-20240412-en
General
-
Target
007a74d3530fbeb6ffcd4153e659e4f0_JaffaCakes118.pdf
-
Size
50KB
-
MD5
007a74d3530fbeb6ffcd4153e659e4f0
-
SHA1
a25a213c5ae57dceafc3389a770904d2a837e1e8
-
SHA256
1b3a27f70c073db6400762cace2a8364275e4701fbe97e615b730a9dd5c5f534
-
SHA512
9a34a7b11916cf4a7fd7d599d7f90ddc4f95372b1737030322b38508b024d1383fed658c9cd70616b81d50b0362179abeb7e79dc3a18f4dec39df1077476af58
-
SSDEEP
768:AgGzpDyBVksi8UrKBifR6108jG5DxHXay92lP6OfDbjmcVGWLEYeuC2J/M4V4:NGFmkqyIzDWcVfETur/Ma4
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2164 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2164 AcroRd32.exe 2164 AcroRd32.exe 2164 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\007a74d3530fbeb6ffcd4153e659e4f0_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5e7d380831a4a08d4c03544b4829f1d7d
SHA14d11b778029ea155edab9317e3cdc8ed6a43c793
SHA2565ed6add6aad3103a599559c1fa9119ceb6047b5a5a43905713f52220d31d7f52
SHA5121525e2a22353f94450c9113ed7d7eff363ab6ba0db508f67b45a23197c627880be455c4fe4c5d9ce5b0e107e713d4b80fec2782d7256ea3ae328fed447c2077a