Analysis
-
max time kernel
117s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 02:40
Behavioral task
behavioral1
Sample
a39075071310b9b97f29284a19cb581a_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a39075071310b9b97f29284a19cb581a_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
a39075071310b9b97f29284a19cb581a_JaffaCakes118.pdf
-
Size
47KB
-
MD5
a39075071310b9b97f29284a19cb581a
-
SHA1
a6f0c50e0f0b09c203011b1888fcbca2e2ee9327
-
SHA256
0daa1114ad6af30edc513d725bbda4c19fade3acb9470ab6a95cfe8497c94a18
-
SHA512
cfbd357fa890a7fe3624cc5ec4d1358529a2efa0ff04bd5f04dec1426cfecc0dd2f06a420009757568a59bec03494c27c189afac629c0318d6dae69677718c16
-
SSDEEP
768:BgGzpDcpnTmnYSFr5YYxeq94+viQZjL6pN/XnrCo7y18suHVH/S75UTIvP/FNa9G:yGFYparljxZjL6vvWbr3vlNa92hbb28t
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1460 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 1460 AcroRd32.exe 1460 AcroRd32.exe 1460 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a39075071310b9b97f29284a19cb581a_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1460
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5f506e40f287fae3c2c2187163721939a
SHA129d0cf088ff2eadaab458543ea35f6372fdc89eb
SHA256f4b25cf9553f67e96b17448abe929bbb0e08bb9ff1c4edc9f4219b4c25149491
SHA51246879f45b0f4391282d0d134c4097ce5304a7257bd813bb86c8ab6d77c831b2f332469b77cdb5034f03ee074247d038a4ddb0988da1c808f3f6123f1d0c2023e