Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:57
Behavioral task
behavioral1
Sample
a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf
-
Size
32KB
-
MD5
a8a009d888ada73f7678f9d73be79a0d
-
SHA1
c49fbccb75df37903cd28bf6f8e46e5e92199c0f
-
SHA256
420f75f3ab613ecf2f7f02b86783e2e99827c6f7e8d8d24e0c58d6c3b713e3e6
-
SHA512
6295c95ac4c47d9a48b43689b75c9e85f9c9cee337705d90f02e2fc45b8fc2d2ec5456287e6e06731bf7dd86b594a1f6f6ff7344aed63bd770e84fed2802b60a
-
SSDEEP
768:oXuMZmwgCLWarKE5HpxnZE4U9bZu/uQ7KzEJIQn:oXFZmGWSrjnZE4U9bZyR7vIQn
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2104 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2104 AcroRd32.exe 2104 AcroRd32.exe 2104 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2104
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51e9988fc80538493a20e82b5f000e2ea
SHA18718b2b2c35f7dfccd4adcca8b6784c042ef6c32
SHA25684bb7fbefedd8224363dc1ecb55b68cd90d1034c4f5f1efe28b6708909fd7789
SHA5129240c08cc78d2256246a200c6e4e0498229408b29221ba16e9f9d77df8e9d806b0ab93beed1d81bb78e34e42d3ed5f11a017ee276a9256ec37beb61927dee10c