Analysis
-
max time kernel
122s -
max time network
128s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 01:58
Behavioral task
behavioral1
Sample
a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf
-
Size
31KB
-
MD5
a376d9a7b5abeaf57a221e3d91e68a67
-
SHA1
46ab4762c63fb7d4d36aa10c5bc54abe7e43d636
-
SHA256
724fdfab6a8b645727eb07abb14ad842c3e8dd56bb446bae9900b1e52e702a79
-
SHA512
35dfa5a7ee26c359cb750efff98b934583965f60a35a9e42d8c05362a8dc2123f5f2454d86abee6f4026ac906eb67c5cb569891cb8a6fba272c41a4e728076d5
-
SSDEEP
768:pqrgBmG2fb6XV7tFJMyvkusr9IOyXdjpTyH8068kQ4MMpgV8nUcTcQIMYXGzfuuf:pSPIo4bqV4
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2064 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2064 AcroRd32.exe 2064 AcroRd32.exe 2064 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a376d9a7b5abeaf57a221e3d91e68a67_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2064
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ea51a8d5cf8b1d61c1cfe37e17e13a49
SHA168bf2cf07ed61ed65a6886d13aef952c614df2dd
SHA2566dd4b0d7678db46e38f27c8d9bae198a5fd28f11fae2ed0cf386e9227daedac1
SHA512b44bbc64525255da2598806599261aebcd4217a8f6b17fbe1cc35b0a79147335fc979008c91bac5e85cd18c11bff3395c77fa1b6903adbcda7c3ec294e839e03