Analysis
-
max time kernel
117s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 09:13
Behavioral task
behavioral1
Sample
a4cc01dacacc97f5ef9ebc97bf6f0a7f_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a4cc01dacacc97f5ef9ebc97bf6f0a7f_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
a4cc01dacacc97f5ef9ebc97bf6f0a7f_JaffaCakes118.pdf
-
Size
30KB
-
MD5
a4cc01dacacc97f5ef9ebc97bf6f0a7f
-
SHA1
f4707da24a9c16bdc687c838e5fd5df4a015943d
-
SHA256
918ddc61a257c69e0eade84aebfdf13d48eae135694dc5c6ac1345f523c1aa2f
-
SHA512
640ff6bced8ecc2898aeb2e736eb3267b423a1c698441e7bef6985ce09febddce70413c362c1d3ac833078f819d8335d2f6405bbed7094d47c4a0459ed9e6bfc
-
SSDEEP
768:FXuMZmwgCLWar88qg8y+Q7f9cX0U0mGdzEy+lny0XDuLdzx2:FXFZmGWS81y+QZcEU01zgy0Mdzx2
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2224 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2224 AcroRd32.exe 2224 AcroRd32.exe 2224 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a4cc01dacacc97f5ef9ebc97bf6f0a7f_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5f347a0c2248dcdd287804faaf36a1f63
SHA1d982b13ccf3620213ac7ffb3514106214e40e5db
SHA2566ef9e61a9383fa617904bd956f9cf8983bfd414052fa27a2628627529d0904e1
SHA5128c89792786dea63f4fbf3d8f738d299ee2bb70dba6d36de8665a3895c3179d8e6dd8089ec264475f31ad20cea9be0a6bd9297b59f4ee18d7cadc699c3914e3f9