Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:44

General

  • Target

    a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    a89482e797290357552cf45a0b859b0e

  • SHA1

    d0c1d26cb5b2d133b596da5a8a3969dc5560d2ba

  • SHA256

    5ce8eea793140785a051cb9866684dab356a22b174511ac279bec0501209befb

  • SHA512

    33a47e12db80da4c7d67c22c925c71f79f3c2004427db77dbcd8a9849b5388a0bdf2fbac63b351cd63d782d2f2aed251d1ba46214cceb4f42216c3983653db7d

  • SSDEEP

    768:ggGzpD4pnm5TFMSs+cDipu+VLCzdnLzAVoh6Pkn19SMYtwsjMcNPcYl:tGFspIs+c+vVLCztLzEol07tMcNUYl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    05e35437fb6c96bed902a5d470350348

    SHA1

    5b1b2d50e55a55e9a91104ac7968398fcdcfda2d

    SHA256

    1a261a8661b5744e355378d774a6616ec71b084659fd9a998ba470b452ad63af

    SHA512

    e1d45f13cd8266f2e862811fd2a42be47eaec6c5543f69369fe8637386c36f69e04912b0180a284ec6ed36fffcf24faf9c67d92d4b89e2e2346262656fa8df36