Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:30
Behavioral task
behavioral1
Sample
a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf
-
Size
38KB
-
MD5
a8879d254de2149ffb4f3422bbf7d48b
-
SHA1
9d37c49c915080b38c7e28c35034ee73675434a8
-
SHA256
82cdf98107ac50e697b84db6a90ddd52579673a0901f6f2ae3c14ad5340fc3dd
-
SHA512
6b4a7890191bbe3a3e38c91df0489a312a67ebf335121ce23337c0b2f7c8287f2813d1043811726840cf3013ed8578983e028316818e845e19dc78f7259a34e0
-
SSDEEP
768:iXuMZmwgCLWarmEO/xhftQd0R9tRMQ2GhnmvCEQHUD:iXFZmGWSypttQQtRnTXEQHUD
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2192 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2192 AcroRd32.exe 2192 AcroRd32.exe 2192 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2192
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5578da077a080c442a5b6fb8380b6de65
SHA1a9756ad6e2c5d8cc6af2c74f2bb4d94437e0695b
SHA256ec9722af3e9593bf2ba2a60d84975168c83d6bb2a4513a38caaa3d45f1f8b29f
SHA512795944ade082b4800d7ee583154dae572efeef4393a9b01802836dc0e9c9db2204c624e532468add6c8910a019d9ccbbb846c3682253af540b1937ae8c23c818