Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 02:26

General

  • Target

    a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    a387ab67b76dfa519ceaa0cf1388a4ac

  • SHA1

    b558a385754879764ca6bff6d591f564df4f4e43

  • SHA256

    10b1b3524ed556481694e3c6a144d46c82c063fdf9042b4960b2cad15b51b7cb

  • SHA512

    03fa729ee6a790e03542e06bc0251c0f9329ef02d3c7ff675c42d5b5352d8cc7a9995f9ef9a17fbfc8af7b3cc10bd57df80557ca726f025905a610440ffc52c6

  • SSDEEP

    768:TEgGzpDPpsAxIpquZDC+YOGce1r+0kQaJ9TSvI46Czsb7aTPeMv8ady2SDGJ5m++:TxGFLpB/cQr+JpT+zmejelsCh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6d01ac2415b43e7551cc38a847926db2

    SHA1

    c4284da8c453a7b4279954af3f52ff15e10f1e81

    SHA256

    ab10cf7828b2e548a4f2b8b51275269f28bf42236302f2fe4299592c2af5aa49

    SHA512

    99996f7f21bc6ff21f08040a230cb49de5600c4436f481482d9d609f44817ddd37bbdb64684aba7c46871bac70a8232bd538302fb990ab81b5cc216b4622a7fa