Analysis
-
max time kernel
119s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 07:25
Behavioral task
behavioral1
Sample
072c64feda75220354fd089176562ff9_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
072c64feda75220354fd089176562ff9_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
072c64feda75220354fd089176562ff9_JaffaCakes118.pdf
-
Size
9KB
-
MD5
072c64feda75220354fd089176562ff9
-
SHA1
16b015cdb186f6cac395bb6cbd4a7438a9b96675
-
SHA256
36bad5800fc7d918fb811bade56837ecaab4edd14cff98c32585a676ff9bacb6
-
SHA512
df3ca02e1ff4cb4166721066ea6f0311cdca5fbc9e351db8d72f371b242740f5ef9de8471e490d6ae3d648203274ccf8b9c1f192e815859f062eecc97045b5aa
-
SSDEEP
192:BPz4ULMxLIKXHszsoNbteZLYS7T15wMKyHTFxFjkJvtnMM7RyrZCQJgzbyGk3FcY:BPz4ULMxLIKXHsA0L415N7Fjk3nMuRyb
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2932 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2932 AcroRd32.exe 2932 AcroRd32.exe 2932 AcroRd32.exe 2932 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\072c64feda75220354fd089176562ff9_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2932
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e93016681f610796440bcc3a70b229d8
SHA187bd22d7d60655159d0246c54a575daf598a6795
SHA25672ff0094ee97261f7c9d91edbccf483b9f17a44049c86e058c4b3a42480f8563
SHA5127564072dc4c06919d8329abef16d611f99b403cd6e7e3c4308e4bf8f733dbb246140ae0f5073034b51c79e1df07f916c4a0dfc20f05622bfe7f13ff7aff77d6d