Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 06:54
Behavioral task
behavioral1
Sample
ad3a4023612ab1d6d369932979bec4a0_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ad3a4023612ab1d6d369932979bec4a0_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
ad3a4023612ab1d6d369932979bec4a0_JaffaCakes118.pdf
-
Size
186KB
-
MD5
ad3a4023612ab1d6d369932979bec4a0
-
SHA1
4a99ec74bd5d642d8a473530d95066abfc1bca11
-
SHA256
9c9968b2a9a10f391d13f6947997d1e7724ada9eb685fddb85a1c974c30fbdeb
-
SHA512
9090c5938f6d583e13082d3cd7336de424b11e267b008f37c03a7621c47dc01e4ec7eb60e03741f88fd0434f8d75937d4d2de8b91a69ac72538f892b67c01bf9
-
SSDEEP
3072:e2irbxzGAFYDMxud7fKg3dXVmbOn5uA6KjnHa1fHAYK6psmw5fF0xSC:e2MKlWQ7Sg3d4bOVsPAikFW
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 912 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 912 AcroRd32.exe 912 AcroRd32.exe 912 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad3a4023612ab1d6d369932979bec4a0_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:912
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD535137e11c5cc376dad7d6d7c2a761f4c
SHA1bf9080a1136c79f0310d70255f2c86b65aab7c35
SHA2565762cb03bc891b2f6e508fd5e34726774d832a081a453fd7e82be8622a4b6e75
SHA512e79003e7a864c30ffbec7f45e284bf0dc7e17a1bf02705132e993d4794a94ba54b4fafe920092d5e47be0d86775ff0ff205b8c8dedd18d0bf2a96fe0a146e555