Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 09:49

General

  • Target

    07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    07cbd92675badf2206c45e96484c24b3

  • SHA1

    0e49e2a81759bb4c5103d587661915f790a1121f

  • SHA256

    35e1a9d5b657cfd38dcd05853c26034c2e6d70c9e5f27769a9c0376c04921d24

  • SHA512

    8a10e6a17149da2f08a36f8adc1633e1112d68f8971c2769122b2883eb3dabf3edf656b621209f7ef8250ae1d994128a82c71582bef715ebd2ec0921c9d57f25

  • SSDEEP

    192:ePz4ULMxLIKXHsfyxN0rudN+Q8Pgq0DlqGssefUcPYdDOeukwG/lxibNiHMwiQV2:ePz4ULMxLIKXHsfCNWi2PpGssw7P8DO5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\07cbd92675badf2206c45e96484c24b3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    34bc58490487d199599bd1d872a7c1e5

    SHA1

    4c1247ef9705ac07b33d412a8632a93ada47d6f8

    SHA256

    84a46bf4f4c33ad79b5ac674be159da76d1edd34c19f3c7e65bdbf2a9ec6b559

    SHA512

    13ac2de07df98bfd6547669932a17e7db61773705c9c3c705c3dc678df67a2f28a13887cdd2082acadd431c7082fc4d131d91790945caa4158c670b60bc21684

  • memory/2944-0-0x00000000034C0000-0x0000000003536000-memory.dmp

    Filesize

    472KB