Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:36

General

  • Target

    a88cc1f4fb9404e20267e5cc600dab82_JaffaCakes118.pdf

  • Size

    58KB

  • MD5

    a88cc1f4fb9404e20267e5cc600dab82

  • SHA1

    5aed0df420271d7591a57090c93e2740156fa2f6

  • SHA256

    f065e6e4addcd56cebd07e4eee469091b8c0d12de72464461f5205f0472a58e8

  • SHA512

    2d0f50ec979fd01addd906d5799fbedbc2a697f3d75f516fa08a61384320809b285758a1ee7089f10c08c67ea90a5fc6d4acb5ce82b38abd8f816f1c6f0d5c08

  • SSDEEP

    1536:qXFZmGWSM8mQtL2siCuod+AWMptf+CU8pHr5a1jpXKnSEWNgd9bCZF:gysMgmw4LXNey

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a88cc1f4fb9404e20267e5cc600dab82_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    af01309ec19c5392a65ea70f7f57b377

    SHA1

    d2720951ccc8b7401a50f3a3c46e51ae37b9d786

    SHA256

    c538a283a892c170fa71543490510b566ba1bd6d7126ffec80f8f03ee2135034

    SHA512

    cb3fb99130147334261993915b64f8135b3df42ff165ee91ee6a86fc282e99ce35f45502f7809b56fcdc8908190bfb6dac9132b2d1c3bd652a737479f3cb3d07