Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-05-2024 14:38

General

  • Target

    41daf3f584643a671d6497335e6c94fe_JaffaCakes118.pdf

  • Size

    12KB

  • MD5

    41daf3f584643a671d6497335e6c94fe

  • SHA1

    26c655962f19d40798b1cfc7fe39b8db7f360276

  • SHA256

    58f53f2f895c693a4d3a89e014fc94a11deadfe1a128dde77b1e333b67534503

  • SHA512

    4fbad11bc3ffbe8d69062f9c838c1ede7975be075b48f9627eab025de288e84dfc4186bfa71f976c4faa218c9761df22c8f6883a22ab2bd2e18ee1066c2dffe7

  • SSDEEP

    192:WJN9ISvaxYc/nstTgQ8bNDo4CjTxTwNqCcgbZ4LVaWWrvF+Im/7PNzw4GaH0X6nY:WXG/xxDo4CjgcyZjF0OaHPu37

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\41daf3f584643a671d6497335e6c94fe_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    df0499689888bcb5f4d9ba9ff1a159f4

    SHA1

    337f70f1be904bc3a485b679d7312c151f4c3d42

    SHA256

    35da19c290d913a1753abc82babe68ca2fd4adc7b868398fba34683990932aea

    SHA512

    1c06c22bd2cd44f49d1b23320c65937ee1e5b5dfeb4d2ac98b308e32201087cb38c64602e3f5c04aaebf15bb1ac97fd34f30f3b3edb7f2928ffc12d3efca2885