Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 05:58

General

  • Target

    ad15c2d8a0b2e05803f54beb73d8e375_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    ad15c2d8a0b2e05803f54beb73d8e375

  • SHA1

    0750f302961ed5234660194be2ec98a0f9594988

  • SHA256

    ab9a825042c56135f5f4f12911121db68dda4a663ee9d2113f680f399b9742d6

  • SHA512

    ee3207ab8d95e43c7f1cb27d8e48b3e48de3ac2e77bf261fffad59681903de574320d7bf550a69999fce66b30425779a2339d07a34ec91265a2f30a5dffbc132

  • SSDEEP

    768:DgGzpDupYg0r8rXZWSop7UEZ/2z5/EaD+i4DDJdQyHZX3nPmoj1SN7gWEVSBWkwm:8GFSpGZ/29/EZDNdQy9fbQgWEVSBWlP+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad15c2d8a0b2e05803f54beb73d8e375_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    9b43bb96922c2d282b838d36b9bbc6ee

    SHA1

    4c9ee44ec593a2fcb01b9af7c30f3426ab9507b2

    SHA256

    493ca2ccab1a4f97cd199933c47986e32cbea0147f442e172399d616d82d9801

    SHA512

    f81d95d080b7588df55baf443835da2fde108a9c0cb1d7c7a267a125c5f502d5fdc2d6652166d14dffb197cc4269e51cd890847d2ee08198eb1a9f089c531465