Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 11:07

General

  • Target

    0826cb3ceefc500fab98e3d53b8c065c_JaffaCakes118.pdf

  • Size

    17KB

  • MD5

    0826cb3ceefc500fab98e3d53b8c065c

  • SHA1

    960448f3c0e2ab1093d6d8a0a0cec63507c0ec3f

  • SHA256

    7c555dfcc9df51c43113851888bb9b6baa57d414256376c41099a0a80f230c2b

  • SHA512

    e722429edbd7c71f5c26c98e4cb4ab66446f13ce38de6435a710db38ec9527bee682fea4fa08ed5bc9e65fee04dde431f94254ab7a998d7e5e5b1671b54db350

  • SSDEEP

    384:3PV1OwkeSTD5nTt0xG9s59FPcTVv3y0eQAT99uvEyGGYk:ywreD5mxsfYrXvsEU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0826cb3ceefc500fab98e3d53b8c065c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    912e076e3bce46b67601407c84ea4671

    SHA1

    37bd984717a63b8752019362cf53853c35467727

    SHA256

    6c44b8ed47cdb5f0f243025ae8f37d073f4a1388d5af942fecee394564c1cead

    SHA512

    a07f9f097521bb4ce2b9e5a0cbdb5bac44a29dcef4b0087340db020ac3a181a74edb4ae45fc7c3ff689f0a6eb941bb6d75afa4ebac1197e3fc97e98081f91ca7