Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
15-06-2024 07:01
Behavioral task
behavioral1
Sample
ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf
-
Size
54KB
-
MD5
ad3fdcb4311a404b6f692ed95ce73e5a
-
SHA1
28fb47a6f0b0a032301f0cd485ac88999da00a80
-
SHA256
cff2e33a80c624c54c0c5e4254bf63e02e5ef39360bf926b27c2584f8882cd59
-
SHA512
42cb45cac5a2f9e6e081393c36a718f20eb97603e459303af84cddabe41ed1a1b016d46888fa0c1b3dd282568916cfa20929a5d020f2472c6eb8736a7347bcc4
-
SSDEEP
1536:MGFvp4lYSxJuE9B7N5hcUAi4GmxgmzWMyhPxJ:pFvp4l5JuE9B7FcUAEmxvYhP
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2072 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2072 AcroRd32.exe 2072 AcroRd32.exe 2072 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad3fdcb4311a404b6f692ed95ce73e5a_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2072
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e4e2b9d84294456df6605a84e7c48dfc
SHA121c19f03ff95210eebbb0458c7543385aebd52e6
SHA25645e835ce5f0144567d3ba7ba8f98a1f31f24a69a41f13f6c4a1f077af921f7f0
SHA51205cda4eed87a6933f73abc36f83f0bea56b85c4aba22f45808d929a343128bb1cbe737151129f1394754291d1a3d119059577f3de2599836159e46222f6c8482