Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 09:49
Behavioral task
behavioral1
Sample
07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf
-
Size
9KB
-
MD5
07cbd92675badf2206c45e96484c24b3
-
SHA1
0e49e2a81759bb4c5103d587661915f790a1121f
-
SHA256
35e1a9d5b657cfd38dcd05853c26034c2e6d70c9e5f27769a9c0376c04921d24
-
SHA512
8a10e6a17149da2f08a36f8adc1633e1112d68f8971c2769122b2883eb3dabf3edf656b621209f7ef8250ae1d994128a82c71582bef715ebd2ec0921c9d57f25
-
SSDEEP
192:ePz4ULMxLIKXHsfyxN0rudN+Q8Pgq0DlqGssefUcPYdDOeukwG/lxibNiHMwiQV2:ePz4ULMxLIKXHsfCNWi2PpGssw7P8DO5
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2944 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2944 AcroRd32.exe 2944 AcroRd32.exe 2944 AcroRd32.exe 2944 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2944
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD534bc58490487d199599bd1d872a7c1e5
SHA14c1247ef9705ac07b33d412a8632a93ada47d6f8
SHA25684a46bf4f4c33ad79b5ac674be159da76d1edd34c19f3c7e65bdbf2a9ec6b559
SHA51213ac2de07df98bfd6547669932a17e7db61773705c9c3c705c3dc678df67a2f28a13887cdd2082acadd431c7082fc4d131d91790945caa4158c670b60bc21684