Analysis
-
max time kernel
117s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 11:11
Behavioral task
behavioral1
Sample
082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf
-
Size
7KB
-
MD5
082ae6e7ad889e67cbaead25f7a60cb7
-
SHA1
c986503ee94a52ab27016216724ba5398897cc08
-
SHA256
69bee7a4bffedc6d68cbaefa8c37736f06747fa2bb46f87b5c9ef0365973f94f
-
SHA512
dd996e6109db612694c3d81d7cbdbb73a96adee1e8a248c5177f64bfd5df1da8bc2773b581942e4cb041328732b3b450adc054770416de8816410e1f45ed090f
-
SSDEEP
192:GP5ufkllXgjSsaVOUnLnSHJYtWkfgCENZk89fmFJz0dtYNjE6Ywz:GP5ufkfpTV5DyYUkfihmz0dtibYwz
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2432 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2432 AcroRd32.exe 2432 AcroRd32.exe 2432 AcroRd32.exe 2432 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\082ae6e7ad889e67cbaead25f7a60cb7_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2432
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5b1575d6b64778b02d97a9a1bf44c6421
SHA116326f8983ef1507fb40440372604987f057751d
SHA2561a1161a17d471e29993b9afa57f111f9c3ff70a47f4fa889263f28d6b647bff3
SHA5123a5b02b9ca3fe300569e1ac0e4a3c63d0de55d9af934d82c9532295d0eb1f47c59783c9cb20f2cb1e976316e46c2d4119d55cfa123a3699f2e6a678181326fda