Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:38

General

  • Target

    a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf

  • Size

    30KB

  • MD5

    a88f98c29c3abbaac1e7aa5fe6feeee9

  • SHA1

    439e808b5c46c25e0482e22625d156bca2f6b104

  • SHA256

    860b75236c35a93f68bffcd7253b21f814d931ccbbec07d833b5a7504d7f690b

  • SHA512

    82d813fbeaf02582eafe51eb7a00e4201d8e8294bb521dda74f1aca5a69f79397162c4d263ae7fc8735a4edf5715cc108e081678519051bd9b97c4613ac747c2

  • SSDEEP

    768:hXuMZmwgCLWarUImKN1k4e4F9NF9hg25lhZgWdNjPRqjwNy6Os7E:hXFZmGWSURKN1k4e4XNF425tgq7Rqjwe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a88f98c29c3abbaac1e7aa5fe6feeee9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    dd25e62a0f93cd8a1b7d39dbdb4e53d0

    SHA1

    7a3ad8b6036bc1efe331fa0b03cdcb108a9d997c

    SHA256

    235399961ca751dfdb445328e1ce47f0dc501dce3d7da267fe541fefa6f579ff

    SHA512

    b0f1675ba6b5d457c12f11846005af9e8245ba2a7cffa5212a44adef4a258f682e2d6f72bb3a3ce65f3ee77e350a84d3e7208fbd621eb21c9f7eeaff6bff1083