Analysis

  • max time kernel
    119s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 06:43

General

  • Target

    ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    ad35ca36e8e75e37db26b598d3c82c24

  • SHA1

    2b39dd22b7776e94b30d989851a8849880f1ee51

  • SHA256

    48a8227564781869ac5047c43a440fbacdb30e1746368a3ac874d094627a96fa

  • SHA512

    50e4446ee43bcfd618f82ff6bca8c28cfffa911ce44892c225001f33e7efc566c14bc1fc0764832f84bb66e04f9108deb475ea3c55e57166f6707aaf94ad403d

  • SSDEEP

    768:CgGzpDppxv+7Aov2+ecsKptMAoLGumL6V/hxYx0JtM9e3rEGD264ZCI:fGFVpxkTFoaum0VPM9e3rVK64ZCI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    9fdf9228865fa90045a3839ba9ea0bda

    SHA1

    281db398efb11e75fd2dd0012ee1a8c25902035f

    SHA256

    5200c6f5fdfc6f8cfb82bb5bb93e43b6f65833a46c9a47616a4f5fd53b909629

    SHA512

    79a91c12754be591b76516e19a5f9e17588e18c329ad4b34afc5d3bf21bf55b4f177a2d8602fa6cf01a6da23eeb6aa18dbfe0d184ab7cf25dcf87481be8474ec