Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 12:43

General

  • Target

    91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    91d3a0e767dfb70e0447c61cc2ef6315

  • SHA1

    a0f7138f1e28cf9a7d8fc343376fb2cad84cd633

  • SHA256

    b2524160a1a81a563bbdafc144cb6a1977ae115113615f5f2ba48bed3716e75f

  • SHA512

    7d68f86c9d7b4d257d006f101a33a205d257e4935b6aba692550ab4e9797d3029a68a3322dd6dfa7dd1a23570dbcb924f2e7c1691cc0a63213300f7eaa070e16

  • SSDEEP

    768:TXuMZmwgCLWarMuMtWArK/OH7DWwHJn0tkjz8J1cZ4:TXFZmGWS2ZrK/O3jnWizccZ4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\91d3a0e767dfb70e0447c61cc2ef6315_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1a714fc2a989aac34b48c72125bcff31

    SHA1

    e3e516d8ac23d01dad5897415adfdbdc6eb652d0

    SHA256

    f2a31c7119000f1d716dc7f13c58971429ea4c0990824c9c72e2ae13bafa89b9

    SHA512

    cb5289f0438bf02429e51a15e701bc4196ad94d1f55f0324264dbc8b0422ae45d40067a3f51a4718d9e7ced04430326976fef9444b8fc3321ed1c5db0f995a9f