Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    04-07-2024 22:57

General

  • Target

    268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    268a0065b6ea134054dc6aea300a830d

  • SHA1

    fb716327c2362c2f0f89e8b45805b9666b0297f7

  • SHA256

    c63048bf7b8332decea19e7b768e1ef70a38bfa81f1a7538d2f102b498984348

  • SHA512

    03b38b47fdfafffc5def7b61d0c6d354987a0356c2e94a34296b723b82bc91080c364bac8009ffe8cd6cb45a9e27e77ebeb66910b5125f8c09e0a3c2e1ea8078

  • SSDEEP

    192:6SwVHgYQsv9gngANyJAHWx3XZ7rMXryc3/9NN/jXjalkU2oXX+:6SwVHgYQKm2x3XRrMXryK/9NpPalkd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\268a0065b6ea134054dc6aea300a830d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7aea00f9da4fbee43075c21c419d91a2

    SHA1

    5cb6a9a127af623c63848f7158686548516fe8f4

    SHA256

    932b3f901227047de54cc61b6674132a0f0684fc8277a5324f1f27eba3375d38

    SHA512

    2fa0ac00e19344f2b9007c5a67a9742c10e487c4f01c6b98cfd1be59a636d3546d3c478e701bd3d45ad444972b4cacd3f51f38a0664a6c2d04ca28b17fcb8da6