Analysis
-
max time kernel
119s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 11:29
Behavioral task
behavioral1
Sample
083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf
Resource
win10v2004-20240611-en
General
-
Target
083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf
-
Size
9KB
-
MD5
083f9e579e1899061f2421526ca83747
-
SHA1
d77cdec501e4f84347f5454318add82ff8b08b15
-
SHA256
beae02e9ffc0e4ce3343c5f816d0d1a0366ea9a3c47f6d275a55b1d73e095e6d
-
SHA512
22761f8d7af96bd823ba1564c7bba89b31c7f1877ac0054c43855a8e7792395030a4ba2096bda2fd60c4da93161381e19bdff7e6d80a919c18a4925c4b1b9c60
-
SSDEEP
192:NPz4ULMxLIKXHsfyxMEu5A6NrMDIL9pW4wCxHHNr+282HXCOJj8hJ7c75h6GdvGk:NPz4ULMxLIKXHsfCo5ANDIvecB+2HH5x
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2996 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2996 AcroRd32.exe 2996 AcroRd32.exe 2996 AcroRd32.exe 2996 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2996
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57108ce0c6d6ff12f5906a63642b24b05
SHA13fd18d8cda38a7daf7650b88de5302a19e030417
SHA2566930ee970b1d1d3e035264e738299c3d7e0a6acbff7b921a3c1624cb576297a8
SHA512ddc2760a68e453cf18590a24c7457639aca837d934b77f3c3bb9038f1d344b2b29a2ff7ef4e414daa869d211ec16e0f728c9470520cf9e706ab87e435e843679