Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    04-07-2024 22:41

General

  • Target

    267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    267f445412cd94a285b0dde591c6ea73

  • SHA1

    f578420b8ec784e599d0f37229fb0bfff8226a69

  • SHA256

    296ce1be7e727420f0581c60205b06c4409ff40b2020f36d0ee18848066c0301

  • SHA512

    1932cfadf83a0281a46ea73f5c697c7ee931c752fdb3f57aad4ff1fd56071559027ef6f949d59ddf560698018d44e77e739cb980548ddecafd02727d4b473592

  • SSDEEP

    192:EPz4ULMxLIKXHszsNZDl9qQiazJqRM4eHXV1lLv1ME50LNJdsgpf1Ln+clkCs:EPz4ULMxLIKXHsAJrqRMzHXXlr+E5OJg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\267f445412cd94a285b0dde591c6ea73_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7822128e74aae98aac92411c3916e092

    SHA1

    bc990d87eae715d5fb0f254ab3b2fceba3bff73b

    SHA256

    a8d224c71d1ca90d128d2c2b63cb07e3b9f00a366e92e71a9198e9b48c2ff62e

    SHA512

    765e358b99c7bf32b12847d162fb1835a6339c741f9452621e877455449c8cc1f03ef5d5a586073fac71dc9ecae4bd95bba8db8539cae1b88df4932a41c7b20b

  • memory/2276-0-0x0000000002A30000-0x0000000002AA6000-memory.dmp

    Filesize

    472KB