Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 10:05
Behavioral task
behavioral1
Sample
07dd06d03f901cb8f5528588edc58170_JaffaCakes118.pdf
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
07dd06d03f901cb8f5528588edc58170_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
07dd06d03f901cb8f5528588edc58170_JaffaCakes118.pdf
-
Size
15KB
-
MD5
07dd06d03f901cb8f5528588edc58170
-
SHA1
2517faa2fe48177eebb60dd8cd1de9befe6ff410
-
SHA256
a5f26f87a82069522493a6468f43cbb5f74e13220ca094d8637b1efd4733407a
-
SHA512
d68a7149b418823b3ab3d2164cfd4b56b92af3d5da09fb62a766c828dda59ec122d580b8f2d5feff50df6a910f9934285e197502a2b93bcfbcaa401dc5974268
-
SSDEEP
384:5P5uqkf7ijXU88h5TwIxgPHtZTPs2r+0uEFPUPRiGTXskY/:I7izU8yxwXPTbybX8
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2184 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2184 AcroRd32.exe 2184 AcroRd32.exe 2184 AcroRd32.exe 2184 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\07dd06d03f901cb8f5528588edc58170_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2184
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD511baa8db2b3b580b1f70283c3486aecf
SHA1c2aad1721441530b4f5bbe68cde8f503bd57282e
SHA25660e57a39594ebe8033602f05be2629b5dee0cc353def9035a9d8ebe886e91a61
SHA51204fb0c5a89aabcab6246c4b3acde601780bd361bfe8983cce2b8e5dc571344f7c1aed4c4bff0c28bfa8ac08e3e3d3c0dd177be74999322065fbad4e700172747