Analysis
-
max time kernel
122s -
max time network
127s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:56
Behavioral task
behavioral1
Sample
a89f6ab83eee6a7743faec9d2b8a80df_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a89f6ab83eee6a7743faec9d2b8a80df_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
a89f6ab83eee6a7743faec9d2b8a80df_JaffaCakes118.pdf
-
Size
37KB
-
MD5
a89f6ab83eee6a7743faec9d2b8a80df
-
SHA1
58a9f2475f1b37bb889bcc14a8979b2f52668b43
-
SHA256
26a342b61be2d1ea0a6a01ad9a2d899a4d7a604a2a65dfe8561e13c8d8caae3f
-
SHA512
e88d78fadc01409552b23e954f9c318303864d3633bd13b4eba08963f89b2f9ac3bdac317e57ff93a54dc143e587841e0f1956b452e2545caa99b177aa76df5b
-
SSDEEP
768:GDd8ZwAT7vYuvOTUauuyzyV1Thd2l1gaVjVAin1MPjVGGYm/uwDQ3aIF+2pJFbYS:GDd6jHvYE3u0yV1Thd2l1gsjVAin1MPg
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2260 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2260 AcroRd32.exe 2260 AcroRd32.exe 2260 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a89f6ab83eee6a7743faec9d2b8a80df_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2260
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5eb133140794049cbf89611bf640fb041
SHA1b22b744cb42dd674499c7d4a07c45ce731c88b22
SHA256d8c91220293c26bfba8ef29712388970ce7ae9fcc2ad3cd498dc71678d99659f
SHA5120426a872b7993d43c8e7de0532769c3a98637f59317763b041154de104622d86dc7955e968184cd10bb5cee5c0ad080ccca18ba0ffa32455c4cd64c3bca9fd7a