Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system -
submitted
04-07-2024 22:41
Behavioral task
behavioral1
Sample
267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf
Resource
win10v2004-20240508-en
General
-
Target
267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf
-
Size
9KB
-
MD5
267f445412cd94a285b0dde591c6ea73
-
SHA1
f578420b8ec784e599d0f37229fb0bfff8226a69
-
SHA256
296ce1be7e727420f0581c60205b06c4409ff40b2020f36d0ee18848066c0301
-
SHA512
1932cfadf83a0281a46ea73f5c697c7ee931c752fdb3f57aad4ff1fd56071559027ef6f949d59ddf560698018d44e77e739cb980548ddecafd02727d4b473592
-
SSDEEP
192:EPz4ULMxLIKXHszsNZDl9qQiazJqRM4eHXV1lLv1ME50LNJdsgpf1Ln+clkCs:EPz4ULMxLIKXHsAJrqRMzHXXlr+E5OJg
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2276 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 2276 AcroRd32.exe 2276 AcroRd32.exe 2276 AcroRd32.exe 2276 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2276
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57822128e74aae98aac92411c3916e092
SHA1bc990d87eae715d5fb0f254ab3b2fceba3bff73b
SHA256a8d224c71d1ca90d128d2c2b63cb07e3b9f00a366e92e71a9198e9b48c2ff62e
SHA512765e358b99c7bf32b12847d162fb1835a6339c741f9452621e877455449c8cc1f03ef5d5a586073fac71dc9ecae4bd95bba8db8539cae1b88df4932a41c7b20b