Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:38
Behavioral task
behavioral1
Sample
a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf
-
Size
30KB
-
MD5
a88f98c29c3abbaac1e7aa5fe6feeee9
-
SHA1
439e808b5c46c25e0482e22625d156bca2f6b104
-
SHA256
860b75236c35a93f68bffcd7253b21f814d931ccbbec07d833b5a7504d7f690b
-
SHA512
82d813fbeaf02582eafe51eb7a00e4201d8e8294bb521dda74f1aca5a69f79397162c4d263ae7fc8735a4edf5715cc108e081678519051bd9b97c4613ac747c2
-
SSDEEP
768:hXuMZmwgCLWarUImKN1k4e4F9NF9hg25lhZgWdNjPRqjwNy6Os7E:hXFZmGWSURKN1k4e4XNF425tgq7Rqjwe
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2368 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2368 AcroRd32.exe 2368 AcroRd32.exe 2368 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2368
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5dd25e62a0f93cd8a1b7d39dbdb4e53d0
SHA17a3ad8b6036bc1efe331fa0b03cdcb108a9d997c
SHA256235399961ca751dfdb445328e1ce47f0dc501dce3d7da267fe541fefa6f579ff
SHA512b0f1675ba6b5d457c12f11846005af9e8245ba2a7cffa5212a44adef4a258f682e2d6f72bb3a3ce65f3ee77e350a84d3e7208fbd621eb21c9f7eeaff6bff1083