Analysis
-
max time kernel
119s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 06:43
Behavioral task
behavioral1
Sample
ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf
-
Size
38KB
-
MD5
ad35ca36e8e75e37db26b598d3c82c24
-
SHA1
2b39dd22b7776e94b30d989851a8849880f1ee51
-
SHA256
48a8227564781869ac5047c43a440fbacdb30e1746368a3ac874d094627a96fa
-
SHA512
50e4446ee43bcfd618f82ff6bca8c28cfffa911ce44892c225001f33e7efc566c14bc1fc0764832f84bb66e04f9108deb475ea3c55e57166f6707aaf94ad403d
-
SSDEEP
768:CgGzpDppxv+7Aov2+ecsKptMAoLGumL6V/hxYx0JtM9e3rEGD264ZCI:fGFVpxkTFoaum0VPM9e3rVK64ZCI
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2236 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2236 AcroRd32.exe 2236 AcroRd32.exe 2236 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad35ca36e8e75e37db26b598d3c82c24_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2236
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD59fdf9228865fa90045a3839ba9ea0bda
SHA1281db398efb11e75fd2dd0012ee1a8c25902035f
SHA2565200c6f5fdfc6f8cfb82bb5bb93e43b6f65833a46c9a47616a4f5fd53b909629
SHA51279a91c12754be591b76516e19a5f9e17588e18c329ad4b34afc5d3bf21bf55b4f177a2d8602fa6cf01a6da23eeb6aa18dbfe0d184ab7cf25dcf87481be8474ec