Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12/05/2024, 04:49

General

  • Target

    38571d70798dc0a669f8cbcffa2de5d6_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    38571d70798dc0a669f8cbcffa2de5d6

  • SHA1

    221427191de376a87af4a1cd7dbdbb97c6b5d4c6

  • SHA256

    01ec0d46facfaadcdd13c95e41bffc6bf0d8b7d3e6700d0176109e8cb64cdd26

  • SHA512

    119aca2f63207b3b2e0136bd252dcd85a869b9695e47283f1ad55df240db000a97680ee08f177d58dd5bb3ea01938497af1a31fac2a4287a51dad1309f65725c

  • SSDEEP

    768:4gGzpD/J5xm+oMX5I1z6ZCEFlxnOFF1fYSHz3MZ2LBuF1ssJBQ9nPn:VGFrJD9nOlQSHz3c2oFGsU9nPn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38571d70798dc0a669f8cbcffa2de5d6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    65de71273297af452bf0ce861411290a

    SHA1

    5ccdfee3e7cd5937690dbba2aeeb066eec4ffda5

    SHA256

    4317a9ad23d5bf36b7ce07125ffcfc9ab0ebc0033d17c313cdeb206dbeaa10e3

    SHA512

    533497e9a7c80943e59a0457333b9494205fdef2303b0a8153110ff8d6ebc515d3dff05f01db6468e16992ca591782652d1d61a4e27537e2fb84fd472f43e116