Analysis
-
max time kernel
121s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
05-07-2024 15:43
Behavioral task
behavioral1
Sample
27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf
Resource
win10v2004-20240704-en
General
-
Target
27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf
-
Size
9KB
-
MD5
27028c6f90eedcb544a53710c1f3b782
-
SHA1
2423fcb27a934be4a96bae85a6e692f6bda093ed
-
SHA256
2160c3881faf67578b1dc10e53bbcbc7790a4089b92fa627ead24033efa7bdf6
-
SHA512
41b4447afca6c46a6bc50735d03f6a82547ab06db2f7d14276d6e6b948217f07a474f48f12cf482a57f3fca24c67d4dfc23b914ad848727ec314fdcf043bafa6
-
SSDEEP
192:BPz4ULMxLIKXHszsc5F1R7TSR/7/1KJOG8OwYo7mZWZ9oTjHhtt2kCV:BPz4ULMxLIKXHsAc5F3TSRjge/lZOTjW
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2696 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 2696 AcroRd32.exe 2696 AcroRd32.exe 2696 AcroRd32.exe 2696 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\27028c6f90eedcb544a53710c1f3b782_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2696
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD52632df4f08950b9455a0bfdba0351e9c
SHA128bef38fa96e73820e21c14320015173a7999362
SHA2561f826351639636d57d7a8bb0fb9fc544bc0badebbad9a247c2916f0a0908e89d
SHA512f0589d4b8b0f06c6ca7ea76cdd4136869121fdf12567088984ca2fc4761dc30af96d85e2079d3354c75010e5a6e56661d5eff02df34a7ec902b8eefd1439dd7d