Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 05:52
Behavioral task
behavioral1
Sample
ad111ecc92eddf5bfb905ad06deac964_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad111ecc92eddf5bfb905ad06deac964_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
ad111ecc92eddf5bfb905ad06deac964_JaffaCakes118.pdf
-
Size
37KB
-
MD5
ad111ecc92eddf5bfb905ad06deac964
-
SHA1
118ab4758d23bce6c0b7e04309446d39f7b042f8
-
SHA256
03a4962d6e12a899a508da3172e222200c2e068be2007808a344433f551bf660
-
SHA512
01a1654bf698aaf5d04b78934ae755179bb7e28c8c22431b030c124c41e72859496e7148d88151e4ea343655433e80c1a75e8be3e05861e5fbe901b77d86847a
-
SSDEEP
768:0XuMZmwgCLWarhO5hd4OKLhjLS/sgYKFx/vP+VyVH1Hx6a:0XFZmGWSoKL9S/sTsxP1Hx6a
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2180 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2180 AcroRd32.exe 2180 AcroRd32.exe 2180 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad111ecc92eddf5bfb905ad06deac964_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2180
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD55b4f5411dff23b287b44c441d8421c9e
SHA15cde05021d6fe52cd11fcf53b192e38ad2661d16
SHA25663d3c6bb030612ffcc00ef71d3209afa29b48dffe69ceee6cfe7e225d170c112
SHA512230ccb3e5e2c9b689de29b0b595ce438be14e77d6ca2c487321d538b6fb4ec43c3822452ad8e7a553cf854992195d2c0ec9f9c42f89027fb3478debc22940b89