Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:57

General

  • Target

    a5a61b052973a7a7e279507b345336df_JaffaCakes118.pdf

  • Size

    17KB

  • MD5

    a5a61b052973a7a7e279507b345336df

  • SHA1

    d6014b72353473085427b434a02c631280548390

  • SHA256

    036939f12239a3fc7b7cc623a32b19f108bd7c247f5569d37be4963f237d580f

  • SHA512

    d638f78e7542597c66524c3d512512550b938f9238b31359a0d62ddbc947367574e8a83a6dca60212007d3501231bd39ddf459010262d304efe59532c607a186

  • SSDEEP

    384:VzfZw06z12xinjEESedvbaSPALGHdVZ9/XlXn1OeuLhcw18fQl93:Vzq06z1minjEESedvbaSPAaHdVZ9/XlY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5a61b052973a7a7e279507b345336df_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d9743619b98fbe4145d59d883f5792f5

    SHA1

    58884f4efb636c0ff54adde241b6ff81a5daef56

    SHA256

    25448068d21480c2b277334cdb3f437e6498eb3d59b93050f2b83c542aabf42a

    SHA512

    9a87fb731d700188164e804ba000151eb7c68cdbaf278e07a131687211ff1e818d07ffba624b5cffa633642a80b4267a2466ce875f85871c1bdbdb9f3a8fa4a1