Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 05:43

General

  • Target

    ad0b09b0672578897a872102e851cb9f_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    ad0b09b0672578897a872102e851cb9f

  • SHA1

    f65f1b16a12a3a7ce0966e38fe5b78bfde2616c0

  • SHA256

    1e868c30818ce1e0a6bc067f32c633d91913ea24ed968e4d5cc5a628d1401833

  • SHA512

    7987d020f9dd16787ccb83d2633b7b7e17ac63d01194cb9cb93f36bea5d9880f59cac6100d3a8279f20b3360eac44ecbf3928bd2a18f0913d9738da45942dc00

  • SSDEEP

    768:GgGzpD4rpY8+Zs9IVTGaxmfdageaAA9AXRy4gEIO+afLvDXg89zT+9SG1O8ldbkz:TGFKpYHwfdpea7iwnafLrj9NN8lVk7sE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad0b09b0672578897a872102e851cb9f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    bf9522ee4f7756f7c82733e71b3281f6

    SHA1

    cb89d4a4d658c8af9ac7fcab46ea28369c4448d6

    SHA256

    bd4527b3f4907630630a70228e38352d9addb15c993ee96a4572a6f579bee6d2

    SHA512

    1de1990258c7cf372ab146edff9db6b8010c222ecc33662d90227a7cc5068fe39841b30fd8749341fdb3e35d160705d5d71c9ec4d09c535a9cdf70746548e322