Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 01:44

General

  • Target

    a36a81763438e14d25019569ce45bd15_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    a36a81763438e14d25019569ce45bd15

  • SHA1

    c8ed1721ce46a9ddb4186ce5bff64aa8a8d02da5

  • SHA256

    d925156d79ec0ed52fd7dd824fd69fda2f1a6993913739690cc862bf69f28e1b

  • SHA512

    16cbbf5be5780a40ff5b70ac7baf81e34a3eff7f388d2856cc93c9c839acd25a4bb27e4deb1fe217f5d405cd75a649cf4c76986c45d28d918bdf709b2191d19d

  • SSDEEP

    768:ogGzpDxpI/RGZwnlOVssAbqnqIOuheptzrDOEF5wupQtKr21sd678Rci71F8R:lGFFpSpOVssELtp9raEF5wupUKzOEciu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a36a81763438e14d25019569ce45bd15_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    719d4201026522e41b3afdca62186494

    SHA1

    8d5bb74fe8b7c410d7735a5dd0ca3ad34c306903

    SHA256

    4035fe1ee63b419e41aea50211c45245981e244225a193cbd42475a3a3ad0176

    SHA512

    f18b77cb6189cd05946a47551240e7b24ccfbe80d86b3d7d1013f77d0523b63500a2d2848c47f35e75921e2ca7a7d261574f377e568ff49d1740a1c3bfc99214