Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2024 18:22

General

  • Target

    9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    9f204dceed7e63a275239053503ba284

  • SHA1

    c2f9a3763d016dfc761b88d73607a20d6b1c14a1

  • SHA256

    10ee347c86cfd48ca210a1c47ff64e4930bf72b57c01da18b21a96bfa7e5c535

  • SHA512

    364d2ce96343103de4ca893ad3e5d7665b0ced607e6ec31b876e9695bbaa85a46e2fc633083cb33e03ded7482cf857c35f7c5f32add5ef932854b4fbabf74af3

  • SSDEEP

    768:RXuMZmwgCLWar5/9NeH2Gd8ggYYWGYJ6Bra8SzMF:RXFZmGWS7NC2GjvYWGfBrXSzMF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0593b84f5f94d6693eb2315d8bb89c97

    SHA1

    96762133491c5eb02f893216cf66254e383740ba

    SHA256

    e43f02962d187fc0d461832f56dd74e87a831fa7e401d3224173b0d9677d2887

    SHA512

    201c01e974fc4f224c6d4d4cee54ecb1824197d4e56af95f8481af9ff838f6eba3e50663d267bd3d25a6df5a44e9704215de49b91bdbe7486ac704520541b372