Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 06:15

General

  • Target

    ad2297bb0901c2b113c7f0068cd24f8e_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    ad2297bb0901c2b113c7f0068cd24f8e

  • SHA1

    87deaacba0356c54c57abb31bf0a8a382f84c96c

  • SHA256

    b6e15d83b626b9b1b0f66764953825617c254867b7cfc133edccfe491b010e5f

  • SHA512

    6cce18266836faecc66cccb664ed8bfd6d41fd0d6a84ec0d8d600696ce05dff6449a46cac22296de39460bbefe197bfc4c80ff3f4d51364da27edccdd81781cd

  • SSDEEP

    768:vXuMZmwgCLWarME5HpuJJECQ0wCgcgwLuCdC081sbp0sdZIU7Uj3q1/Wx1dq27IT:vXFZmGWS18JJECQ0wCgcgwLuCdC0v/f9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad2297bb0901c2b113c7f0068cd24f8e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    beb43cba494e68a59c5135a3c938e3fb

    SHA1

    425482352d12293cdb47dcb0d5b44f872274eb15

    SHA256

    635fa91f0f4a847cc1f9312b43ecdb0c28b5aaa2bfc51b10b22a9c8dc652fbb0

    SHA512

    be2fb750c3b95952efb142f2c96e1b92e67ede60cd4298b5f84241377a88ded263ed3235d78b3d7e6e1ecf9442918b71b7cd208dab2529d6f1999a34e57de613