Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:03

General

  • Target

    a5701842b91f2d365a5fdd962d1fc000_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    a5701842b91f2d365a5fdd962d1fc000

  • SHA1

    e6b018e63e5d5707b65aa3766a36f3ea2d28b9ac

  • SHA256

    60e8ae102db4313c37b3e4fe508ff8457cc1b739dde57b84b649e6cd6f7da368

  • SHA512

    44c68ee48bc304506e0fe0616eb17b9b6a95b9ad68de3e9fa499fa6a19896170fd37a1e338f84faa9b4e15dee964e9c00d2b0efe5912c09ddb27529fd852f780

  • SSDEEP

    768:zXuMZmwgCLWar45lupncr1QSlCswtXSZelpBTc5qxry/:zXFZmGWS0upncr1QSlZ6CZqx8qxry/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5701842b91f2d365a5fdd962d1fc000_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    514bd19d8ef61ac3a34b363223895e10

    SHA1

    41ef4267f2eb1d8d06f44f39b836adf57c7e356f

    SHA256

    f3cf3d1f81fa1a55bac510b42e86ded585a5c280390dcaf174ceda3fb94a7723

    SHA512

    bd297653a12085f9c198e4deda7d1bff24d933d97300ea7322798d1f06b5c12aee2affb6e4d0e8b4f92fc88aa6b6ea9418875f09b95b23a0d5ea5ba96613ea7a