Analysis
-
max time kernel
119s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 08:16
Behavioral task
behavioral1
Sample
0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf
-
Size
9KB
-
MD5
0766a8e3230c007068f51ea1b6a6f6cb
-
SHA1
f230694f3f94ee28af470f0b796ce3df2ca58af0
-
SHA256
122929425ff46d592edb8e85050ce3cbc4a465292daea8a9380ee3553aefa330
-
SHA512
d2670f71bde6ca7ee433eb3a1b59963a8551d5ced6281a04a4e9c942515ea5a4ec6596d26cb22e068c6f223da3133518cb44aa034233025f6523c7019f92f8f9
-
SSDEEP
192:SPz4ULMxLIKXHsfyxQP/rG4wKi4b6/0EyJ8D65jcwTLzZW6EZykCV:SPz4ULMxLIKXHsfCoCWiueGB5465fVkw
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2268 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2268 AcroRd32.exe 2268 AcroRd32.exe 2268 AcroRd32.exe 2268 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0766a8e3230c007068f51ea1b6a6f6cb_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2268
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5bac28e78527dc3bf71278acd8f71cced
SHA1ebed70e50acf729ce1e5c7edcab0a53727f97d8b
SHA2563f7a4d758f4ec24064be9241b3ede7d9fb80687f72d684e5fb2e4b1952b9fa6c
SHA5122a1f0e2205a5759d7bfcc13fa77c925d562ed91dc714859579705784336af93a721a73608b6feb14a20672b1e8ec202e7b3962167ba96f5f89af284dd4f2c654