Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 07:03

General

  • Target

    ad40f829d14e58b92a8a02e5c64370f3_JaffaCakes118.pdf

  • Size

    44KB

  • MD5

    ad40f829d14e58b92a8a02e5c64370f3

  • SHA1

    cfb24be82fd7f86d2b7e27283e800cea514f30f1

  • SHA256

    a326203bbec2f2d1f1d39e246e3aaa686c8eb2ce163825c4ab8d043308c216bc

  • SHA512

    f0015e3b677f426ee614dd9ff9ced80856bb410186bae14354fb4cb5a48f3fecdd821218e13a51ca9d1d77e9dc7d32263cc76e684be189cf4c4e57068e126e40

  • SSDEEP

    768:1gGzpD8eY9vcSYzuKOjGVIXPqE73hyFji+UnUBxaGIjh1k5aYSSbwht481:mGFgeuplOi+zbIN1kDSSb8t481

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad40f829d14e58b92a8a02e5c64370f3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    3e9b8c8b0e8cbdd8ac4b77eed1b01e02

    SHA1

    9a7e90a20aa0f03b3f21205a424892a0b16a767b

    SHA256

    3fb74c19692c0758da3dadaa69e3cf784d3c922774c5233af6dccc7da126cdd9

    SHA512

    b18bed3d6c3d892593bfe12f425452b5dd07b8fa2e752d8172626dfdf8988a652392e5118c9f820baa66e204a4e64ebbe9fbe4488ee9ec65d55d6f9d5edd0389