Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
26-04-2024 11:06
Behavioral task
behavioral1
Sample
00a060eb91254abef28b045d5f88b33b_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
00a060eb91254abef28b045d5f88b33b_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
00a060eb91254abef28b045d5f88b33b_JaffaCakes118.pdf
-
Size
47KB
-
MD5
00a060eb91254abef28b045d5f88b33b
-
SHA1
fe16101aac8f51f9182ca25106ed76f771739542
-
SHA256
f531fd4025d96e4840d3b33037f476f05034424252aba06a4cd6d38083077ef0
-
SHA512
6d2d99c8e576898d51df863c738b946213f469d642ddf6ba0163f5fa89e0fbdbce8ed3ac947bfff9775ebb1a256eec14516a9ab6c228f99398a98ed322b96117
-
SSDEEP
768:1gGzpDop13etq7a7AN23jFj7C9JwFAVWhxiCpbXLHLe9vErp2V+97LWVLZbws4YS:mGFEpotq7aEN23jF/CfwqkxiCpbXLHLL
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2016 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2016 AcroRd32.exe 2016 AcroRd32.exe 2016 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00a060eb91254abef28b045d5f88b33b_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2016
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5927f67c597dc882f99b8d1560e77c26f
SHA10ef901ec7a95a44676d4029dafc2c533d7cf2a21
SHA25605415b28776d33a29aaf9f2a54adf58cf4b98c61e35d79d03ad1acc883b5379a
SHA51205a44d6ac67c13ded4472ee5f4991b220859b4f1c9c124adbf83e2b937ad53692521f50cd3c72a0be2737f37d06455a190c1500a751f0d2a964815ef1e66906a