Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 08:16

General

  • Target

    0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    0766a8e3230c007068f51ea1b6a6f6cb

  • SHA1

    f230694f3f94ee28af470f0b796ce3df2ca58af0

  • SHA256

    122929425ff46d592edb8e85050ce3cbc4a465292daea8a9380ee3553aefa330

  • SHA512

    d2670f71bde6ca7ee433eb3a1b59963a8551d5ced6281a04a4e9c942515ea5a4ec6596d26cb22e068c6f223da3133518cb44aa034233025f6523c7019f92f8f9

  • SSDEEP

    192:SPz4ULMxLIKXHsfyxQP/rG4wKi4b6/0EyJ8D65jcwTLzZW6EZykCV:SPz4ULMxLIKXHsfCoCWiueGB5465fVkw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    bac28e78527dc3bf71278acd8f71cced

    SHA1

    ebed70e50acf729ce1e5c7edcab0a53727f97d8b

    SHA256

    3f7a4d758f4ec24064be9241b3ede7d9fb80687f72d684e5fb2e4b1952b9fa6c

    SHA512

    2a1f0e2205a5759d7bfcc13fa77c925d562ed91dc714859579705784336af93a721a73608b6feb14a20672b1e8ec202e7b3962167ba96f5f89af284dd4f2c654

  • memory/2268-0-0x0000000003220000-0x0000000003296000-memory.dmp

    Filesize

    472KB