Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 07:56

General

  • Target

    a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    a89f621640f1f6e97d8d90d3f8e638f7

  • SHA1

    23fe6885b4102689324435378a295181337ee2dc

  • SHA256

    f487637863e5530f07ed1faf02b1e5bf03ff2799d562c863e8e3ec35333ac99f

  • SHA512

    4440f0f2956e7f473a6c9868c461b3a354ee0de442b9025af015b47d58f05436bb887c963568e7be86ffd725b0d2f08c3aa03d76c9b4dcf51087cd15b89a9863

  • SSDEEP

    768:BgGzpD5Kuggnv1Bfnr3NQu847UFG8WIeJeHDXb+Pt0xUkOyULTWsyQGgHI9:yGF9TcpIejX8t02ZLTly7f9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a89f621640f1f6e97d8d90d3f8e638f7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1c57450be49e5bb358e2d6879f45e964

    SHA1

    f97e2633a99fa6c7779e11290c634c6f6e443c57

    SHA256

    f3f7ce39b6b1c12e20f579b07e58b1b4a7dc906caa91164d7f1d7e0528eacc77

    SHA512

    a534caced3ed64d0f412b30f925b5cbc91a2e70b6370d0dd1708565cbd78f82c51205483169497460b824ccc01de460b13eefa64895aa66b97725643f5f53162