Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    05-07-2024 15:43

General

  • Target

    27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    27028c6f90eedcb544a53710c1f3b782

  • SHA1

    2423fcb27a934be4a96bae85a6e692f6bda093ed

  • SHA256

    2160c3881faf67578b1dc10e53bbcbc7790a4089b92fa627ead24033efa7bdf6

  • SHA512

    41b4447afca6c46a6bc50735d03f6a82547ab06db2f7d14276d6e6b948217f07a474f48f12cf482a57f3fca24c67d4dfc23b914ad848727ec314fdcf043bafa6

  • SSDEEP

    192:BPz4ULMxLIKXHszsc5F1R7TSR/7/1KJOG8OwYo7mZWZ9oTjHhtt2kCV:BPz4ULMxLIKXHsAc5F3TSRjge/lZOTjW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2696

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2632df4f08950b9455a0bfdba0351e9c

    SHA1

    28bef38fa96e73820e21c14320015173a7999362

    SHA256

    1f826351639636d57d7a8bb0fb9fc544bc0badebbad9a247c2916f0a0908e89d

    SHA512

    f0589d4b8b0f06c6ca7ea76cdd4136869121fdf12567088984ca2fc4761dc30af96d85e2079d3354c75010e5a6e56661d5eff02df34a7ec902b8eefd1439dd7d

  • memory/2696-0-0x0000000002A80000-0x0000000002AF6000-memory.dmp

    Filesize

    472KB