Analysis
-
max time kernel
121s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 06:09
Behavioral task
behavioral1
Sample
ad1dd263cbb2eb5a9edac08ffc08cae7_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad1dd263cbb2eb5a9edac08ffc08cae7_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
ad1dd263cbb2eb5a9edac08ffc08cae7_JaffaCakes118.pdf
-
Size
355KB
-
MD5
ad1dd263cbb2eb5a9edac08ffc08cae7
-
SHA1
35993e98d207b279ed2c324e2b7d11b2425e1f29
-
SHA256
ca8e8a679460b756e62fde5a86d08910834dd26db30d1e8b686873fdee2406a8
-
SHA512
8387be134a6eb10cb6f7d3bd49bdc6b88b4284a55d8c13bf2653b1e838500cf5de158584f605d9ca32f8ccfbe2c7dbefa7ae58b3706c7f8d4adb8d9ccc310ca3
-
SSDEEP
6144:8wADuTvJ2jCIdgnlzCJ8UhfcI1qrQA1luS0WirJpV4S7B4+dlQitLV:8zCLkCogHeUVQBn397bdumR
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2752 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 2752 AcroRd32.exe 2752 AcroRd32.exe 2752 AcroRd32.exe 2752 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad1dd263cbb2eb5a9edac08ffc08cae7_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2752
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5203151e29430c3bfce80857b034bd0f6
SHA104d724f7c10b30599a6019fe0809f0004c48daa7
SHA256261ca273a4a1411b1a1bff5ea82b3547629a5f5bc3313aad85c3816a7a652a67
SHA512cac7dc8abcf536df8501dfd48dc8d33aac08dc8962081ab41d71bde59d8486c8f87611f7e4d0107afe8a886be40981b842fa75ca6491129e4e04b3354db24a03