Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 02:45

General

  • Target

    a394a977729c8154b96d69868117ad35_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    a394a977729c8154b96d69868117ad35

  • SHA1

    068ce9dde5524e75bded836ab03c073a0724f699

  • SHA256

    c972a4568a68888c2db4fe8fc5ef224a8af5a33ea56101cfd1e195a31a6e69f2

  • SHA512

    a77a9b6757d2182c0337d338c53a77ba5ddac9bcffd4c05a978ea2a0e3058052c2def779f0a82610ad98dbee67d058116215770d5527a5eb606e41b63cd773c5

  • SSDEEP

    768:6gGzpDKpzou+jaiPOsCUG6w+od09Wl16iaULW8xMqGiY8MlTG9utAsWpp:nGFup8xjaisU1w+oN1h/dxMqGiZUGsW/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a394a977729c8154b96d69868117ad35_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    059cbbe628cfaae02513982558ca37b2

    SHA1

    40421288517f075f52824307691064c017634f83

    SHA256

    80c56204bb1c59952e9419c32a7a146a32be51e165617ded3bad300e0d82b698

    SHA512

    765cdec1ac6b88aba737129ec1074c1b21afbee4a9457a70452f8e40339ff69709eb02ec2aee77e570d41cb97b14095480a86778d3ad00341c5b3af56a7ea6e4