Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 11:29

General

  • Target

    083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    083f9e579e1899061f2421526ca83747

  • SHA1

    d77cdec501e4f84347f5454318add82ff8b08b15

  • SHA256

    beae02e9ffc0e4ce3343c5f816d0d1a0366ea9a3c47f6d275a55b1d73e095e6d

  • SHA512

    22761f8d7af96bd823ba1564c7bba89b31c7f1877ac0054c43855a8e7792395030a4ba2096bda2fd60c4da93161381e19bdff7e6d80a919c18a4925c4b1b9c60

  • SSDEEP

    192:NPz4ULMxLIKXHsfyxMEu5A6NrMDIL9pW4wCxHHNr+282HXCOJj8hJ7c75h6GdvGk:NPz4ULMxLIKXHsfCo5ANDIvecB+2HH5x

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\083f9e579e1899061f2421526ca83747_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7108ce0c6d6ff12f5906a63642b24b05

    SHA1

    3fd18d8cda38a7daf7650b88de5302a19e030417

    SHA256

    6930ee970b1d1d3e035264e738299c3d7e0a6acbff7b921a3c1624cb576297a8

    SHA512

    ddc2760a68e453cf18590a24c7457639aca837d934b77f3c3bb9038f1d344b2b29a2ff7ef4e414daa869d211ec16e0f728c9470520cf9e706ab87e435e843679

  • memory/2996-0-0x0000000001120000-0x0000000001196000-memory.dmp

    Filesize

    472KB