Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/06/2024, 06:10

General

  • Target

    191064cd195900428882556b73a4ae6c_JaffaCakes118.pdf

  • Size

    2KB

  • MD5

    191064cd195900428882556b73a4ae6c

  • SHA1

    b74852f6c236277e72c3b4cd51ea3fb6a28f2670

  • SHA256

    fed04db831db307383519ada0bf1a3737eb84c8b75f152af86cd8983a5fc10c8

  • SHA512

    67bed0332051d4dd1c16767efdf02313e08e2b70939e555c7ff35dc7757a9b1284d66382ce8c0cead99b1d1920567d0cb623cf855ea2193d924f2725cc04af3d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\191064cd195900428882556b73a4ae6c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    38ef1b5e6beb7a58f1ba690411b54acf

    SHA1

    fb1fdcc5d58f8e2a47ee19a4da922d337eab863f

    SHA256

    a7aeb9901992d2443c46d3afc953f74d2f09e5c280b0df7da56f08e3e282c94f

    SHA512

    7924a5475d5b785799a92e56845df65c3ea4f51a0e716de532d4e7190e9b11f1ee4e3ca0824514f91fcc36c06cd6a702ab3f7badfff883d9e0ec2cd1c1869c0c

  • memory/3060-0-0x0000000002970000-0x00000000029E6000-memory.dmp

    Filesize

    472KB