Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 11:11

General

  • Target

    082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf

  • Size

    7KB

  • MD5

    082ae6e7ad889e67cbaead25f7a60cb7

  • SHA1

    c986503ee94a52ab27016216724ba5398897cc08

  • SHA256

    69bee7a4bffedc6d68cbaefa8c37736f06747fa2bb46f87b5c9ef0365973f94f

  • SHA512

    dd996e6109db612694c3d81d7cbdbb73a96adee1e8a248c5177f64bfd5df1da8bc2773b581942e4cb041328732b3b450adc054770416de8816410e1f45ed090f

  • SSDEEP

    192:GP5ufkllXgjSsaVOUnLnSHJYtWkfgCENZk89fmFJz0dtYNjE6Ywz:GP5ufkfpTV5DyYUkfihmz0dtibYwz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2432

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b1575d6b64778b02d97a9a1bf44c6421

    SHA1

    16326f8983ef1507fb40440372604987f057751d

    SHA256

    1a1161a17d471e29993b9afa57f111f9c3ff70a47f4fa889263f28d6b647bff3

    SHA512

    3a5b02b9ca3fe300569e1ac0e4a3c63d0de55d9af934d82c9532295d0eb1f47c59783c9cb20f2cb1e976316e46c2d4119d55cfa123a3699f2e6a678181326fda

  • memory/2432-0-0x0000000002530000-0x00000000025A6000-memory.dmp

    Filesize

    472KB