Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
11-06-2024 17:44
Behavioral task
behavioral1
Sample
9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf
Resource
win10v2004-20240426-en
General
-
Target
9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf
-
Size
40KB
-
MD5
9f06d3c1fbc0785e24e4f5728d3dd386
-
SHA1
7427551bcf3aa94bcd98ce257694673a4a294351
-
SHA256
29c6eb5fecf548ccd3cb0aba2a84512c07d1a24be15df41474c7c1020abee8e2
-
SHA512
3ae0f194b99b6c5ac54ae5ec125e5b74e775a715e92a3abdcf7302de057a99c0ccf735865037d333c6ba6cb34d60c22ccb23fcf03601af7a6267eb6abc3f2441
-
SSDEEP
768:4XuMZmwgCLWariE5Hpuvd/ic+rAxPudoaQWUR2nRtBpc+IXMJW/j1BwllFx0vLrs:4XFZmGWST8vd/ic+rAxPudoaQWUR2RPH
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2460 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2460 AcroRd32.exe 2460 AcroRd32.exe 2460 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2460
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD533b1a2a39b6de8ae05e976d5d2204af1
SHA151aa4612e1a2120a1769e93b06ac3add8f9dc93d
SHA2564fffe8337a4ae518ed86179f16f94777ce525ba9c0ccd1e1c019515a8a7cb78d
SHA5127bf3caa601ccc1495461d4f09465e006364899993f8ea7c1d6aa66203e83f75da9092e4aec048d66146104665055b86f2ffb679e5baefa1e90ad3c9a4f3731b3