Analysis
-
max time kernel
117s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 02:26
Behavioral task
behavioral1
Sample
a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf
-
Size
41KB
-
MD5
a387ab67b76dfa519ceaa0cf1388a4ac
-
SHA1
b558a385754879764ca6bff6d591f564df4f4e43
-
SHA256
10b1b3524ed556481694e3c6a144d46c82c063fdf9042b4960b2cad15b51b7cb
-
SHA512
03fa729ee6a790e03542e06bc0251c0f9329ef02d3c7ff675c42d5b5352d8cc7a9995f9ef9a17fbfc8af7b3cc10bd57df80557ca726f025905a610440ffc52c6
-
SSDEEP
768:TEgGzpDPpsAxIpquZDC+YOGce1r+0kQaJ9TSvI46Czsb7aTPeMv8ady2SDGJ5m++:TxGFLpB/cQr+JpT+zmejelsCh
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2316 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2316 AcroRd32.exe 2316 AcroRd32.exe 2316 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a387ab67b76dfa519ceaa0cf1388a4ac_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2316
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD56d01ac2415b43e7551cc38a847926db2
SHA1c4284da8c453a7b4279954af3f52ff15e10f1e81
SHA256ab10cf7828b2e548a4f2b8b51275269f28bf42236302f2fe4299592c2af5aa49
SHA51299996f7f21bc6ff21f08040a230cb49de5600c4436f481482d9d609f44817ddd37bbdb64684aba7c46871bac70a8232bd538302fb990ab81b5cc216b4622a7fa