Analysis
-
max time kernel
117s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
24-06-2024 12:28
Behavioral task
behavioral1
Sample
088173c599488af290a4c0a2c39f58a7_JaffaCakes118.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
088173c599488af290a4c0a2c39f58a7_JaffaCakes118.pdf
Resource
win10v2004-20240226-en
General
-
Target
088173c599488af290a4c0a2c39f58a7_JaffaCakes118.pdf
-
Size
16KB
-
MD5
088173c599488af290a4c0a2c39f58a7
-
SHA1
2e8eac268f42d7ca24a03c7edb166490305c03f3
-
SHA256
bc3deddd991d22cc23c0c224df7f34f928dc088bb5ae8cb2074115ccc8424c40
-
SHA512
314f92c34a86a73f79d4d3b9597a84ec9521e9ecce5e52bc432e921a67b2857f66e5f2cc56d3b298b764864e90e9058c5f476653e15d289ca9acc0fb443cea47
-
SSDEEP
384:uPV1BPm7+0to/0lCEu9k5EXTsK4qpsYLMtcp4Nl8FqvsXGGYu:iuy0yAuFXIjqpsACi4NlNsn
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2336 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2336 AcroRd32.exe 2336 AcroRd32.exe 2336 AcroRd32.exe 2336 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\088173c599488af290a4c0a2c39f58a7_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2336
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5cd2fcbe174e0bb807fc8c43b1b6b07ae
SHA115c31e8832bbd198578b3f0b0733f58cecafa72f
SHA2564bb6047da0bd7fd0e1119cf25ed999f74aad39e7dc60416ac1ac8c2532a7f6d1
SHA51228f8156a3a4bbc741f81fb099447642e5e7c4871e33ac11e0c891583a139612c4061348788083912c501a3d730aad55c9b34f6cc01a390028f7ffcd62bd78010