Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:44
Behavioral task
behavioral1
Sample
a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf
-
Size
45KB
-
MD5
a89482e797290357552cf45a0b859b0e
-
SHA1
d0c1d26cb5b2d133b596da5a8a3969dc5560d2ba
-
SHA256
5ce8eea793140785a051cb9866684dab356a22b174511ac279bec0501209befb
-
SHA512
33a47e12db80da4c7d67c22c925c71f79f3c2004427db77dbcd8a9849b5388a0bdf2fbac63b351cd63d782d2f2aed251d1ba46214cceb4f42216c3983653db7d
-
SSDEEP
768:ggGzpD4pnm5TFMSs+cDipu+VLCzdnLzAVoh6Pkn19SMYtwsjMcNPcYl:tGFspIs+c+vVLCztLzEol07tMcNUYl
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2128 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2128 AcroRd32.exe 2128 AcroRd32.exe 2128 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a89482e797290357552cf45a0b859b0e_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2128
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD505e35437fb6c96bed902a5d470350348
SHA15b1b2d50e55a55e9a91104ac7968398fcdcfda2d
SHA2561a261a8661b5744e355378d774a6616ec71b084659fd9a998ba470b452ad63af
SHA512e1d45f13cd8266f2e862811fd2a42be47eaec6c5543f69369fe8637386c36f69e04912b0180a284ec6ed36fffcf24faf9c67d92d4b89e2e2346262656fa8df36