Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 07:01

General

  • Target

    ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf

  • Size

    54KB

  • MD5

    ad3fdcb4311a404b6f692ed95ce73e5a

  • SHA1

    28fb47a6f0b0a032301f0cd485ac88999da00a80

  • SHA256

    cff2e33a80c624c54c0c5e4254bf63e02e5ef39360bf926b27c2584f8882cd59

  • SHA512

    42cb45cac5a2f9e6e081393c36a718f20eb97603e459303af84cddabe41ed1a1b016d46888fa0c1b3dd282568916cfa20929a5d020f2472c6eb8736a7347bcc4

  • SSDEEP

    1536:MGFvp4lYSxJuE9B7N5hcUAi4GmxgmzWMyhPxJ:pFvp4l5JuE9B7FcUAEmxvYhP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2072

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e4e2b9d84294456df6605a84e7c48dfc

    SHA1

    21c19f03ff95210eebbb0458c7543385aebd52e6

    SHA256

    45e835ce5f0144567d3ba7ba8f98a1f31f24a69a41f13f6c4a1f077af921f7f0

    SHA512

    05cda4eed87a6933f73abc36f83f0bea56b85c4aba22f45808d929a343128bb1cbe737151129f1394754291d1a3d119059577f3de2599836159e46222f6c8482