Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:30

General

  • Target

    a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    a8879d254de2149ffb4f3422bbf7d48b

  • SHA1

    9d37c49c915080b38c7e28c35034ee73675434a8

  • SHA256

    82cdf98107ac50e697b84db6a90ddd52579673a0901f6f2ae3c14ad5340fc3dd

  • SHA512

    6b4a7890191bbe3a3e38c91df0489a312a67ebf335121ce23337c0b2f7c8287f2813d1043811726840cf3013ed8578983e028316818e845e19dc78f7259a34e0

  • SSDEEP

    768:iXuMZmwgCLWarmEO/xhftQd0R9tRMQ2GhnmvCEQHUD:iXFZmGWSypttQQtRnTXEQHUD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8879d254de2149ffb4f3422bbf7d48b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    578da077a080c442a5b6fb8380b6de65

    SHA1

    a9756ad6e2c5d8cc6af2c74f2bb4d94437e0695b

    SHA256

    ec9722af3e9593bf2ba2a60d84975168c83d6bb2a4513a38caaa3d45f1f8b29f

    SHA512

    795944ade082b4800d7ee583154dae572efeef4393a9b01802836dc0e9c9db2204c624e532468add6c8910a019d9ccbbb846c3682253af540b1937ae8c23c818