Analysis
-
max time kernel
118s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
23-05-2024 00:20
Behavioral task
behavioral1
Sample
691f32af8d8cc935aacc3f76789e147e_JaffaCakes118.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
691f32af8d8cc935aacc3f76789e147e_JaffaCakes118.pdf
Resource
win10v2004-20240426-en
General
-
Target
691f32af8d8cc935aacc3f76789e147e_JaffaCakes118.pdf
-
Size
39KB
-
MD5
691f32af8d8cc935aacc3f76789e147e
-
SHA1
78c94fd4e0a0ab8e183946cd7f7aff2091ce64cb
-
SHA256
8988b42cc538be6b1a53c1bf0867ff1b2856ecca7ac26e37b4fb562a2564d4d8
-
SHA512
ee2429604bf23a0b8386bba2c235fd967a83584480a3163d50ce678125fe08a979ac100852fda4b53e7b8752e5bd0e9d1749b406f7f1fe28ab065f2d385ec99b
-
SSDEEP
768:aONFBz2fIf1GDhrIyRx8s9fo/llmlhIghr97BRbXHPQHkdyc3p129cBE53XuMZms:aQyIkDdIUQ/llmlhIghr97BRbXHPQHkk
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2248 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2248 AcroRd32.exe 2248 AcroRd32.exe 2248 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\691f32af8d8cc935aacc3f76789e147e_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD50c6abfac9b9b4e6d65c4bfbd80cdffe6
SHA1121a7738f438514cbfe0ebfd4029d6c08e1d871b
SHA2562e92a93f2663e575e0452be30a52f23e6738f1988bd72451b4d908928efc0fdc
SHA512edf1c29de996eac692109d59b9de2a4634bda6f7531299042b434772195f3f78eafcc6c3e5775575e6ca27a9445435bbbb2f3c6d05bd32408865e0c02476bda4