Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 06:14

General

  • Target

    ad219288cff550bca19e1e73f3dc8da7_JaffaCakes118.pdf

  • Size

    31KB

  • MD5

    ad219288cff550bca19e1e73f3dc8da7

  • SHA1

    bf3d1ddf29122d4165b56cafec59cfea4869e2d0

  • SHA256

    82d74f440f6d965882bd91709147c534da9a16aea2e69ee0f4c788eb38fdfa92

  • SHA512

    a92c7e4c09be31050316684923577a1976d4949c3e6a2737999170d4e9ec9a8f09916f55a953cc39b61bdd82882ba33c7179e21985fcab38b965939dd9bf6128

  • SSDEEP

    768:17DFpjo7Io1Xp94R7MBktls1TJkEqVXTOrOTy/RlNlX/GCDe8XvE56XuMZmwgCLR:5H1YXoR7MBktls1TJkEqVXTWOTy/RlN9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad219288cff550bca19e1e73f3dc8da7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    4f0730b9ba0ed8ebf794e44571c4056f

    SHA1

    0d52d9d48d323efa74a0fc089faa1410b0cfed5b

    SHA256

    6bac9c8b3725d72fa48db8ba7b219bb23e883c837e370bf5f6da03aa94879739

    SHA512

    652ba7d854d6b0ae1b49698d726e5aa9d83ac800e871169f33e028ed2ae8976923c384fe76280d3f6ed120cb239f2f63e3babdc15d9fb206ac5f9cedeb4a6adb