Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
05-07-2024 08:33
Behavioral task
behavioral1
Sample
26ca85c3ba87b16f4732478291e4c56e_JaffaCakes118.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
26ca85c3ba87b16f4732478291e4c56e_JaffaCakes118.pdf
Resource
win10v2004-20240704-en
General
-
Target
26ca85c3ba87b16f4732478291e4c56e_JaffaCakes118.pdf
-
Size
8KB
-
MD5
26ca85c3ba87b16f4732478291e4c56e
-
SHA1
2a2f716beafafdc5474fefd29c0074590c995820
-
SHA256
353f5befeba662a03bc47adaceef4b0dbad54b438eafc3978b6176b83d70a4eb
-
SHA512
7255381ab545d24af052afdc4e0eef102298a26b0bb18841d0b9fc54aeff3460ee3c55b7b3a16ddf577bdfa35b39b9b95216866165071cd76337787d110153ce
-
SSDEEP
192:3P5uUakakwdof4AllN70bJwrTUEv9CnMt/Ihp3HYl:3P5udknwdSx70bJaaMt/IhBHYl
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2208 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 2208 AcroRd32.exe 2208 AcroRd32.exe 2208 AcroRd32.exe 2208 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\26ca85c3ba87b16f4732478291e4c56e_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2208
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5dcc1cb19a8b0d30ed03ef25b40d8e2b6
SHA1d743d7e03ecfcef3790daccafb572dc117e0e8ea
SHA25622083f97c5a527637977f45aeb4ad38c3fd4602add1e01fc38bd071d9448ac26
SHA512a7ee14edd4444771cb2b4c45a754365961a482c52745723013802445652af93e1ea204971adb01f00322c43a74beb5329e17790c90c774ead753b2aac24c7216