Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27-04-2024 22:15

General

  • Target

    03beee17cb60fbf7db66657c7c62b260_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    03beee17cb60fbf7db66657c7c62b260

  • SHA1

    1f5ea5cd5c32241bf0eb78d6235af3a83fdb6583

  • SHA256

    4b56976b07cca98fb296e2b8f2fd0449fe41aa4dd3fcc2dc2085270fd0e9d202

  • SHA512

    43eeec9cf61dc99adda45a395236334b501bbe7a72abb6f2f6a2acdafe8c9cfe800b223373dc696e7506788b2bdb5ce3493ef938bdc87e479719045b5e1bd18f

  • SSDEEP

    768:jgGzpDjOPCXwjxVo2JqauTy1WjJy0d97lIXsSzz8JvF/Jw/7sqZ5uTrD:cGFfOJorS1zzKF/ioqPuTrD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\03beee17cb60fbf7db66657c7c62b260_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dede66a7bb2b3e9ca6087613316b22a7

    SHA1

    0bee5b2fd8d7fd24453da0b5fd49d24a04ae91f5

    SHA256

    7d6fa45f00e7452fd199da28f58528a9a42c6f46c858b4b55c072956a3c5b59b

    SHA512

    73ce1c1fc3b0bb7d7b1663535a512be14fd5ccfdd965c85509a3090d1c3fad05e091d2b3b21671528fba03c6d7dc3588275a9b02929d90459c84b5e36db65cf9