Analysis
-
max time kernel
117s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 07:16
Behavioral task
behavioral1
Sample
ad4aacb7d7f5cfb7752f2e2f9a258d77_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad4aacb7d7f5cfb7752f2e2f9a258d77_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
ad4aacb7d7f5cfb7752f2e2f9a258d77_JaffaCakes118.pdf
-
Size
40KB
-
MD5
ad4aacb7d7f5cfb7752f2e2f9a258d77
-
SHA1
f9e74b9ad86dbbcd12042232b917b19b01c43cd0
-
SHA256
b3e74ab625f9182575be4401d91a26159b56260ce82975d6e92788c67b838b70
-
SHA512
f9da10f71849d31a3f2001ce205896ec32477429213724fba0e38c533b79f7a7463ec7d32bbe1da101824501a2efcdb5f7c1f12bbc1986f090158761e20d2799
-
SSDEEP
768:EgGzpD3pVonSncncj5h6YqmmkvyZL7inw2MG3UduL4miYVNBgxgig+jkr5u:xGF7pun0yQfMG3l9iYVNBIgig+jku
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2316 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2316 AcroRd32.exe 2316 AcroRd32.exe 2316 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad4aacb7d7f5cfb7752f2e2f9a258d77_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2316
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD54929851e80faea60497e796b03e4f112
SHA1d1c8f0ac4ad41820688507bc4b0623f051855abe
SHA256d3430cb59ccd71fe4630ba3e4d2b4d15f4f128ee28c1a63bb9eb61e2677a05be
SHA5122d57830be936cf0eb98c0857e8857f78084b428bd125fd3dd823b783804d8c54cd9b1740fdc1fde4bf7e69b71161a47073f90bca9cc7d5ce1a4f12d552a059ba