Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
11-06-2024 18:22
Behavioral task
behavioral1
Sample
9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf
Resource
win10v2004-20240426-en
General
-
Target
9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf
-
Size
34KB
-
MD5
9f204dceed7e63a275239053503ba284
-
SHA1
c2f9a3763d016dfc761b88d73607a20d6b1c14a1
-
SHA256
10ee347c86cfd48ca210a1c47ff64e4930bf72b57c01da18b21a96bfa7e5c535
-
SHA512
364d2ce96343103de4ca893ad3e5d7665b0ced607e6ec31b876e9695bbaa85a46e2fc633083cb33e03ded7482cf857c35f7c5f32add5ef932854b4fbabf74af3
-
SSDEEP
768:RXuMZmwgCLWar5/9NeH2Gd8ggYYWGYJ6Bra8SzMF:RXFZmGWS7NC2GjvYWGfBrXSzMF
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2364 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2364 AcroRd32.exe 2364 AcroRd32.exe 2364 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f204dceed7e63a275239053503ba284_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2364
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD50593b84f5f94d6693eb2315d8bb89c97
SHA196762133491c5eb02f893216cf66254e383740ba
SHA256e43f02962d187fc0d461832f56dd74e87a831fa7e401d3224173b0d9677d2887
SHA512201c01e974fc4f224c6d4d4cee54ecb1824197d4e56af95f8481af9ff838f6eba3e50663d267bd3d25a6df5a44e9704215de49b91bdbe7486ac704520541b372