Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:56
Behavioral task
behavioral1
Sample
a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf
-
Size
38KB
-
MD5
a89f621640f1f6e97d8d90d3f8e638f7
-
SHA1
23fe6885b4102689324435378a295181337ee2dc
-
SHA256
f487637863e5530f07ed1faf02b1e5bf03ff2799d562c863e8e3ec35333ac99f
-
SHA512
4440f0f2956e7f473a6c9868c461b3a354ee0de442b9025af015b47d58f05436bb887c963568e7be86ffd725b0d2f08c3aa03d76c9b4dcf51087cd15b89a9863
-
SSDEEP
768:BgGzpD5Kuggnv1Bfnr3NQu847UFG8WIeJeHDXb+Pt0xUkOyULTWsyQGgHI9:yGF9TcpIejX8t02ZLTly7f9
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2844 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2844 AcroRd32.exe 2844 AcroRd32.exe 2844 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2844
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51c57450be49e5bb358e2d6879f45e964
SHA1f97e2633a99fa6c7779e11290c634c6f6e443c57
SHA256f3f7ce39b6b1c12e20f579b07e58b1b4a7dc906caa91164d7f1d7e0528eacc77
SHA512a534caced3ed64d0f412b30f925b5cbc91a2e70b6370d0dd1708565cbd78f82c51205483169497460b824ccc01de460b13eefa64895aa66b97725643f5f53162