Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:07

General

  • Target

    a57530512d649af6f973b9ca72c09cf8_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    a57530512d649af6f973b9ca72c09cf8

  • SHA1

    b5fe1d5c2e896b8319efe9a72d9862f89d56a265

  • SHA256

    4103d3a06fa4e8009a5a2148de74d3b577d1d603cd4fdf02c7b443769e7a7ffb

  • SHA512

    d856a987de406b1099fa2e751f7a52cca7a57d67646f92e04b5aa3c0fe6bc785b3af2161ae6446449a29ea356262b96592ddc16fc81275c1699c2a38f7b7ff5b

  • SSDEEP

    768:SXuMZmwgCLWar4zFE5HpxvzaqrjefD5IQpPPxjbziOAjMz4bPM:SXFZmGWSHjvzaqrjefD5IQpBWOloPM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a57530512d649af6f973b9ca72c09cf8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7adc930d7c18eb0c424b5e7406d32c4a

    SHA1

    19276225d65330a036ecab2977109f9a2bf2bcbf

    SHA256

    7ad09d5f64b407a64d07253fa80323a6f1f4e33fabe24986be4763ce864d3b4c

    SHA512

    fbaae4fb60a7958f6051e92a7d811ac5ef111da7cbce25dd1b91196bb9e37ee29c37ac5e7aab9a41993e5f67fbdfd48b48f390ca38a64e3a25863b0b4ae330d9