Analysis
-
max time kernel
122s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
03-06-2024 12:43
Behavioral task
behavioral1
Sample
91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf
-
Size
37KB
-
MD5
91d3a0e767dfb70e0447c61cc2ef6315
-
SHA1
a0f7138f1e28cf9a7d8fc343376fb2cad84cd633
-
SHA256
b2524160a1a81a563bbdafc144cb6a1977ae115113615f5f2ba48bed3716e75f
-
SHA512
7d68f86c9d7b4d257d006f101a33a205d257e4935b6aba692550ab4e9797d3029a68a3322dd6dfa7dd1a23570dbcb924f2e7c1691cc0a63213300f7eaa070e16
-
SSDEEP
768:TXuMZmwgCLWarMuMtWArK/OH7DWwHJn0tkjz8J1cZ4:TXFZmGWS2ZrK/O3jnWizccZ4
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2104 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2104 AcroRd32.exe 2104 AcroRd32.exe 2104 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2104
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51a714fc2a989aac34b48c72125bcff31
SHA1e3e516d8ac23d01dad5897415adfdbdc6eb652d0
SHA256f2a31c7119000f1d716dc7f13c58971429ea4c0990824c9c72e2ae13bafa89b9
SHA512cb5289f0438bf02429e51a15e701bc4196ad94d1f55f0324264dbc8b0422ae45d40067a3f51a4718d9e7ced04430326976fef9444b8fc3321ed1c5db0f995a9f