Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 01:03

General

  • Target

    a3496994bb2f5bf90fad3d84e0bcf958_JaffaCakes118.pdf

  • Size

    118KB

  • MD5

    a3496994bb2f5bf90fad3d84e0bcf958

  • SHA1

    f323e3b0bd65d4c0f6b42dfd7371186b9aaad442

  • SHA256

    ea77245eaedceb95863e245ae275520c254797360c1b5ea007706f7fae4cb4bf

  • SHA512

    f32154d397fa5f2d793dfdff31d640b73e61f22ecc8880b14e98e258c85d62564029f5a878829a801016a84912e0e0f6c58cdf245500f0e2bfc04affb2ad8beb

  • SSDEEP

    3072:SysVmZhvfo8KY3OwV2xKSG0CJZUxYAdaAmABASfnMa:9X3WkOG2xKS5CJuxYAdaQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a3496994bb2f5bf90fad3d84e0bcf958_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    a80ab19b13b39e575159a5c002a57371

    SHA1

    2f4933a47b1196d3df17eace3c81bf213eeeb5f1

    SHA256

    bd5c57acc53949ca2b6aa8d780db23b04c7536fd8ecf0b902e09a97d87990def

    SHA512

    029fc0492855927d0bd61ca1ce71affb5a9e75514f9845fcea0ce50dca303e9eb9d58c1dd0aa4b4f6c8775ef59c8af132ba82216050bdabdfd1d79144eeb1600