Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 02:04

General

  • Target

    a37b17972d8d104b9bcc378e1b05ab15_JaffaCakes118.pdf

  • Size

    33KB

  • MD5

    a37b17972d8d104b9bcc378e1b05ab15

  • SHA1

    39d3094eb3a4dbf954387de738599d60cac978cb

  • SHA256

    cf4b6c11dbf8e2f4408e17de24508138c2a64e9c6b588ab8717ec7ec4fbbdf9e

  • SHA512

    6782a85dfe68892519c690da2317a33e2e2d249200d48fcfd205887f7617933ada1bd51a075f14ea482d765a86db37ee71ae60b49713f3653967ec4708549f83

  • SSDEEP

    768:8XuMZmwgCLWar2/E5Hpx6q4krTceKfNCs5X26zaOZH0X:8XFZmGWSFj6q4kvWC4RzaOZHG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a37b17972d8d104b9bcc378e1b05ab15_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    78f10dc4a52588f91fa8c1d9008cf93d

    SHA1

    17dd2e851b42511ba9c12f8a3d8289102f889fec

    SHA256

    8717666b10796799e8ad33ed2813a915b22b259c141a477c89962592a977cccb

    SHA512

    317b9120093aeca00576bc02f3e0edb4323ab229a03e331d2001fe13a167cd014b2fd2c3e15eab1859d7fde7f7a31380953bef66dae57627b8946c897f6132f8