Analysis
-
max time kernel
120s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
27-04-2024 22:12
Behavioral task
behavioral1
Sample
03bdc2ec4532096bb4f6b22b65d1d476_JaffaCakes118.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
03bdc2ec4532096bb4f6b22b65d1d476_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
03bdc2ec4532096bb4f6b22b65d1d476_JaffaCakes118.pdf
-
Size
33KB
-
MD5
03bdc2ec4532096bb4f6b22b65d1d476
-
SHA1
20809a65f42675d7fb0748c83e4c2cf8b71284dd
-
SHA256
3dc5cc16b4e98a3499b201775885c5122404d344f4a79b802a6275a48d9ad7eb
-
SHA512
f3331265a9b632a2467daa786a6cb89e096c609936092a9cf094ef9709f93551fef8e3757778e50915297017367e08958680fd8e97e12e7d311805b2d60e89f7
-
SSDEEP
768:EXuMZmwgCLWar8pxPCj4RXhQtn2p/i16+7dfC0OrlgZUb7HntOrQ1QtR/ArRT6h:EXFZmGWS8jPCj4RRQtn2p/i16gOhgZG0
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2284 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2284 AcroRd32.exe 2284 AcroRd32.exe 2284 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\03bdc2ec4532096bb4f6b22b65d1d476_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD523666ae9e45b2e3fdb9f9f5b2c316080
SHA1d99681d65417978e65e26c0979292bb3e82da88d
SHA2561fe6931520dc9d7bfe1a1313d737a0d438535985b8f95a10705065c5d0f3bd4a
SHA512d00094e8418d42188dd0cdc77e204f287204eba24dbc4257f678e4b4f4db56a38eaadbbb667bfccd496e4e620390df626137a75d702cf7b684417cb5ffabb337