Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 05:52

General

  • Target

    ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf

  • Size

    186KB

  • MD5

    ad1123361c2083fa14635d3239dd6d36

  • SHA1

    7d6f72c7c54320961e760f4b97fdf342367acb9e

  • SHA256

    d680cb7f3dedb62d71bade37de4a2f7a2f9559606a467e6d0a0191a57b2881bf

  • SHA512

    0070375ed45a03a0c90813bdca791bbac09a42f715d9c3f9a39531e1c1fee62b1ad0f763efe9b9ce4824212da69edaac8d2ce680ef927c122f43323d5b02650a

  • SSDEEP

    3072:m2irbxzGAFYDMxud7fKg3dXVmbOn5uA6KjnkM/LYrbQOwh9TU2VGCSm:m2MKlWQ7Sg3d4bONkMuar

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad1123361c2083fa14635d3239dd6d36_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2404

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    288e8af78f119057ab4d2dcbfd82f682

    SHA1

    4ff2f4c1932c7d0058f0a3872fc3e58a4cfa8f89

    SHA256

    d3729c42d7c150474779529408391110f2d5e9c50ba2d79e8c8ff8ac82a0461b

    SHA512

    4cae1ac897fa9456a6bccfdb2f6cec251cff2544c52a295f6eaebd951e001d5318392cacea04e36e537d2c4fbd49db0e435f6118f78f7c7ddfa40f2f77badc9b