Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:57

General

  • Target

    a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf

  • Size

    32KB

  • MD5

    a8a009d888ada73f7678f9d73be79a0d

  • SHA1

    c49fbccb75df37903cd28bf6f8e46e5e92199c0f

  • SHA256

    420f75f3ab613ecf2f7f02b86783e2e99827c6f7e8d8d24e0c58d6c3b713e3e6

  • SHA512

    6295c95ac4c47d9a48b43689b75c9e85f9c9cee337705d90f02e2fc45b8fc2d2ec5456287e6e06731bf7dd86b594a1f6f6ff7344aed63bd770e84fed2802b60a

  • SSDEEP

    768:oXuMZmwgCLWarKE5HpxnZE4U9bZu/uQ7KzEJIQn:oXFZmGWSrjnZE4U9bZyR7vIQn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8a009d888ada73f7678f9d73be79a0d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1e9988fc80538493a20e82b5f000e2ea

    SHA1

    8718b2b2c35f7dfccd4adcca8b6784c042ef6c32

    SHA256

    84bb7fbefedd8224363dc1ecb55b68cd90d1034c4f5f1efe28b6708909fd7789

    SHA512

    9240c08cc78d2256246a200c6e4e0498229408b29221ba16e9f9d77df8e9d806b0ab93beed1d81bb78e34e42d3ed5f11a017ee276a9256ec37beb61927dee10c