Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 08:32

General

  • Target

    a8bffa2095ec53b01be103c538659873_JaffaCakes118.pdf

  • Size

    145KB

  • MD5

    a8bffa2095ec53b01be103c538659873

  • SHA1

    10502f3f3fa0a2344be59a855515ef601886efd2

  • SHA256

    55619dcd75b4aae30a91281c9ed67519e653f0ffde03cad7b42e9b85f8a78fd8

  • SHA512

    a23838da6cf0b139233da8ba37ca7cbd0e958df2e8d64aa51412c3cbd244609eda175bb72132a8f12fe961083d14d41af907af2b0d076d077ffc3c3ccfa74691

  • SSDEEP

    3072:EFhpwWMGPVELPu4iWQEn9Y2wu//0TdDzEHykXdYsBw1mjiHOM/Tl:8DwWMGPVUhiWz4u/cTlEHtgOO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8bffa2095ec53b01be103c538659873_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1c9d9f7db189c4d57cd7bf4a058ce854

    SHA1

    88f00d565da0e535b55313c2b5b8fafd98caea39

    SHA256

    0843726a4b06371d1f6af3e33b31d7e503c785e2ba66e8e871dedbbd6f235e43

    SHA512

    f481f4b1eb3f7ab4eb40efce82ed4c08e892d2be5274ba295a0273ddf7bc18ad1f4f1a8c4f52c2f7200afe7e608406336c986fb420f26417c759e2578a3a6544