Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 09:32

General

  • Target

    a4dd67631f52d05abbdabbf04c433210_JaffaCakes118.pdf

  • Size

    61KB

  • MD5

    a4dd67631f52d05abbdabbf04c433210

  • SHA1

    829cf9e113b53b55100dfaea1eac025ec4c99c40

  • SHA256

    4dfb149955d13c3ec2766456cd10ae17724ec3d976017cf6dca6e3f2a7ed2baa

  • SHA512

    a392dd9f493e7e2537fb66cc3d814d5aad74f9ba83a438eadeb0c817b29a33687bb5c9ef0f9518d9849a802767f2fc55fd00e577e605bdd69bdef765b557d072

  • SSDEEP

    768:GPgGzpDyBVksi8UGXfsKs2Adx9cLh3X5GXB8fPL0F/c1f1I9YBYJ8Y++iOx8O4cg:nGFmxfj6YSYeLv/iHjIcq5gyhyf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a4dd67631f52d05abbdabbf04c433210_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6d5f204d7055c601c178eaca5d77af10

    SHA1

    d148ba38ef859fa3393df5f66f721754ab1ff221

    SHA256

    e66d254862f749082393cc85df78c647232e0178bda7e111b674bfcae0c2a607

    SHA512

    d8841cf080620368362cab0606b50058fdc6176125aa5be8d36ae227f18c70f351f7c61edc92c5589a77faf6c28e079e1ce3e4bd8c915050e7ad12d223087cbb