Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 01:58

General

  • Target

    a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf

  • Size

    31KB

  • MD5

    a376d9a7b5abeaf57a221e3d91e68a67

  • SHA1

    46ab4762c63fb7d4d36aa10c5bc54abe7e43d636

  • SHA256

    724fdfab6a8b645727eb07abb14ad842c3e8dd56bb446bae9900b1e52e702a79

  • SHA512

    35dfa5a7ee26c359cb750efff98b934583965f60a35a9e42d8c05362a8dc2123f5f2454d86abee6f4026ac906eb67c5cb569891cb8a6fba272c41a4e728076d5

  • SSDEEP

    768:pqrgBmG2fb6XV7tFJMyvkusr9IOyXdjpTyH8068kQ4MMpgV8nUcTcQIMYXGzfuuf:pSPIo4bqV4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ea51a8d5cf8b1d61c1cfe37e17e13a49

    SHA1

    68bf2cf07ed61ed65a6886d13aef952c614df2dd

    SHA256

    6dd4b0d7678db46e38f27c8d9bae198a5fd28f11fae2ed0cf386e9227daedac1

    SHA512

    b44bbc64525255da2598806599261aebcd4217a8f6b17fbe1cc35b0a79147335fc979008c91bac5e85cd18c11bff3395c77fa1b6903adbcda7c3ec294e839e03