Analysis
-
max time kernel
120s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 05:52
Behavioral task
behavioral1
Sample
ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf
-
Size
186KB
-
MD5
ad1123361c2083fa14635d3239dd6d36
-
SHA1
7d6f72c7c54320961e760f4b97fdf342367acb9e
-
SHA256
d680cb7f3dedb62d71bade37de4a2f7a2f9559606a467e6d0a0191a57b2881bf
-
SHA512
0070375ed45a03a0c90813bdca791bbac09a42f715d9c3f9a39531e1c1fee62b1ad0f763efe9b9ce4824212da69edaac8d2ce680ef927c122f43323d5b02650a
-
SSDEEP
3072:m2irbxzGAFYDMxud7fKg3dXVmbOn5uA6KjnkM/LYrbQOwh9TU2VGCSm:m2MKlWQ7Sg3d4bONkMuar
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2404 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2404 AcroRd32.exe 2404 AcroRd32.exe 2404 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2404
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5288e8af78f119057ab4d2dcbfd82f682
SHA14ff2f4c1932c7d0058f0a3872fc3e58a4cfa8f89
SHA256d3729c42d7c150474779529408391110f2d5e9c50ba2d79e8c8ff8ac82a0461b
SHA5124cae1ac897fa9456a6bccfdb2f6cec251cff2544c52a295f6eaebd951e001d5318392cacea04e36e537d2c4fbd49db0e435f6118f78f7c7ddfa40f2f77badc9b