Analysis
-
max time kernel
118s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 08:33
Behavioral task
behavioral1
Sample
a8c0e5619597c679c70245092f50f6e7_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
a8c0e5619597c679c70245092f50f6e7_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
a8c0e5619597c679c70245092f50f6e7_JaffaCakes118.pdf
-
Size
47KB
-
MD5
a8c0e5619597c679c70245092f50f6e7
-
SHA1
4ac8941bb492dbe09a2320f1a0b1f209d45ad612
-
SHA256
6f6a6d40348c16eca6de3785600a89b2d488fd183d551ec963008fccd92ee437
-
SHA512
87e2c4044d25d3d00492e44575df99ba099c8b226e9372e657becfb613bcbee925da582d6e9dda49ab1f4c417641acfbed90273fc3d70efdd0fed1f5ea221b3b
-
SSDEEP
768:lgGzpDLzWIlL75fYVsS9tOKDJmdDvzV5XhW5S3Q63AiPV5m/7u3zqjc5iiq2f/gh:2GF/z09mDDZA63Aisy3zqo5ii1/gh
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2388 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2388 AcroRd32.exe 2388 AcroRd32.exe 2388 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8c0e5619597c679c70245092f50f6e7_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2388
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ec4bbf9d53aa24a99bda803aa6a6d511
SHA148e5a374b17eb8bbaf52cb1057cf87dd005377a1
SHA256ef155a6e6fe3586a0d257b6dd9630e0cc39224c2bc189dd020cfd72a862100af
SHA51238078f668fd2487f41449f7433c3839b1e2d363ab763f5bb5ed59b5dae090be5459773714bcf81a3db624017a4e56aa4633c9663e9b7d0bdddeaa63c5432c97a