Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2024 17:44

General

  • Target

    9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    9f06d3c1fbc0785e24e4f5728d3dd386

  • SHA1

    7427551bcf3aa94bcd98ce257694673a4a294351

  • SHA256

    29c6eb5fecf548ccd3cb0aba2a84512c07d1a24be15df41474c7c1020abee8e2

  • SHA512

    3ae0f194b99b6c5ac54ae5ec125e5b74e775a715e92a3abdcf7302de057a99c0ccf735865037d333c6ba6cb34d60c22ccb23fcf03601af7a6267eb6abc3f2441

  • SSDEEP

    768:4XuMZmwgCLWariE5Hpuvd/ic+rAxPudoaQWUR2nRtBpc+IXMJW/j1BwllFx0vLrs:4XFZmGWST8vd/ic+rAxPudoaQWUR2RPH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f06d3c1fbc0785e24e4f5728d3dd386_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    33b1a2a39b6de8ae05e976d5d2204af1

    SHA1

    51aa4612e1a2120a1769e93b06ac3add8f9dc93d

    SHA256

    4fffe8337a4ae518ed86179f16f94777ce525ba9c0ccd1e1c019515a8a7cb78d

    SHA512

    7bf3caa601ccc1495461d4f09465e006364899993f8ea7c1d6aa66203e83f75da9092e4aec048d66146104665055b86f2ffb679e5baefa1e90ad3c9a4f3731b3