Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:55

General

  • Target

    a5a3bae855a094f25e149977e2ef6b48_JaffaCakes118.pdf

  • Size

    44KB

  • MD5

    a5a3bae855a094f25e149977e2ef6b48

  • SHA1

    395a34584114ca2fbada894a720cd071fcd26045

  • SHA256

    4ca3e85acd4d9b5a6bf7e69be7c7e738b67b59eb8064f2150d5c00ebe70b2984

  • SHA512

    5468c26278436b3d5fc1003d55bf3e11e8db6ea36c7dea91353f2f30fb1d6917cbdea6ecf3ef82c2688ac0a6650311b8fc9095e333c649d84ad0e543623539ce

  • SSDEEP

    768:BgGzpDLefHmrYRBAfAfeWzVn1yP5A0vznYBdwem0bWR1rf+kZj/RZZmUXTr7ifig:yGFXekxv7nYBSeMrfPZj/dmUXX7ifiVS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5a3bae855a094f25e149977e2ef6b48_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2c65703a75c24c644279ab04952e5911

    SHA1

    551ec7fa7a523f1ee26a9b6eb513d865c57149f0

    SHA256

    0bbfe3d6948ea727d32b4dc06b5336a1cc4246a096d2f534fa80417b544f4e14

    SHA512

    4a340e026c95a2d0cd162daac9985c8222ecfd18796d0937e419abc433086e990039a94495ae3b1bbe3e6de55dcba509b4e3d9074fd52d9e6ccdc85001dd9f7e