Analysis
-
max time kernel
119s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
04-07-2024 22:57
Behavioral task
behavioral1
Sample
268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf
Resource
win10v2004-20240704-en
General
-
Target
268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf
-
Size
9KB
-
MD5
268a0065b6ea134054dc6aea300a830d
-
SHA1
fb716327c2362c2f0f89e8b45805b9666b0297f7
-
SHA256
c63048bf7b8332decea19e7b768e1ef70a38bfa81f1a7538d2f102b498984348
-
SHA512
03b38b47fdfafffc5def7b61d0c6d354987a0356c2e94a34296b723b82bc91080c364bac8009ffe8cd6cb45a9e27e77ebeb66910b5125f8c09e0a3c2e1ea8078
-
SSDEEP
192:6SwVHgYQsv9gngANyJAHWx3XZ7rMXryc3/9NN/jXjalkU2oXX+:6SwVHgYQKm2x3XRrMXryK/9NpPalkd
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2008 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2008 AcroRd32.exe 2008 AcroRd32.exe 2008 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2008
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57aea00f9da4fbee43075c21c419d91a2
SHA15cb6a9a127af623c63848f7158686548516fe8f4
SHA256932b3f901227047de54cc61b6674132a0f0684fc8277a5324f1f27eba3375d38
SHA5122fa0ac00e19344f2b9007c5a67a9742c10e487c4f01c6b98cfd1be59a636d3546d3c478e701bd3d45ad444972b4cacd3f51f38a0664a6c2d04ca28b17fcb8da6