Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 09:11

General

  • Target

    a4ca3b81e855ee7ad1ff90af7513b68f_JaffaCakes118.pdf

  • Size

    32KB

  • MD5

    a4ca3b81e855ee7ad1ff90af7513b68f

  • SHA1

    ae17cf45cccc728f482b30cb776e336bc5779e56

  • SHA256

    9d2d69b6240b98fe1596e487bd7c6ba29adb342266eed8555050b415410c2e24

  • SHA512

    f36360657a84b08dd8ea84666101003553b61c83119fc81ff4d6f63a96aae443da1e599be34ef1118340dc7d41592dd2267b934140e790c03ba88277915144bf

  • SSDEEP

    768:vgGzpDIpZ/s9eI93AIYMgTj51WPKUmtWo78G+FV6YRnDqJ0V/5:YGFkpPIYMDrmtF78G+FVtVq0V/5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a4ca3b81e855ee7ad1ff90af7513b68f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f938c542fbd82eb97d2ed48a01418939

    SHA1

    2154de4bb023035befca4478c2f2d4f1a9a3f6f2

    SHA256

    c72f694f53ea8ab896bd3370ff70456cc74f8bcbd23a69ce346a924336d0d84a

    SHA512

    f7b4340c9a75f647fc510a0601bc012d236431375c5c7cd2e10704bde9674b3436810ea39fa81089a649d9c2913b4259dd04a34971ac870724db36fd351683aa