Analysis
-
max time kernel
120s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 05:59
Behavioral task
behavioral1
Sample
ad16423da5a08422ede524862e712a75_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad16423da5a08422ede524862e712a75_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
ad16423da5a08422ede524862e712a75_JaffaCakes118.pdf
-
Size
34KB
-
MD5
ad16423da5a08422ede524862e712a75
-
SHA1
d0c5949d56099ab34332e8c9f68dcb9241781776
-
SHA256
97c49e80c2694c6b6ec82b51c30be6e7187e1e60559306ac1a77b377893dd7d2
-
SHA512
c6c072ca411af54c9568f075e0e69f254bdf9bde7334ed9784ff77bd15726d8c6100934b47637eb7fcdac97387b66995148c719d881b2044cd7ac476c4202e36
-
SSDEEP
384:LJX2rJIYU3fOUvTORxnEEnza3GmB9thDUJCUSloo7xdaRu3clCUSm:NX2rJC3mUCRxnEEm3GchI8oexdqu3cn
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2404 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2404 AcroRd32.exe 2404 AcroRd32.exe 2404 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad16423da5a08422ede524862e712a75_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2404
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ad51258a0b40fd2e355992313351cc0d
SHA144c9f71c9af0b7467588da4cc472314ec18454ef
SHA2560b88a27f7a3914ea1148282868acb221588988e8d8063263439d5c39273731ad
SHA512a393676af3349cddf64688d95708c96899cdeea1b03e0c2478761e67b3579dbe44fb4ebe8ef46dc5aacb2946cdd6eafd291f5def86dd64484e6bec5ede8aca2e