Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    05-07-2024 20:01

General

  • Target

    27171bd37242dcc6e71fff009f2b0a68_JaffaCakes118.pdf

  • Size

    7KB

  • MD5

    27171bd37242dcc6e71fff009f2b0a68

  • SHA1

    5697546e5cde897eb7b1f82a226e22d0c7dd9e4c

  • SHA256

    cc3f5b7f6b0d0994ad5cc5b17dd4a17b75be2426ba8e9ac3b9563ba2be5e603e

  • SHA512

    be27afd26336d92f5ac221c5f82fcef6eea374fe81c9a3a8da82de2384b45639add007f0af69e9a811f51186307299a2a5c3a698eef02e6aff48d795095ae873

  • SSDEEP

    192:YP5uFm4k/zxZLCNxSqiYuRs+G7+GAluUSRVGDNBE/tAdIYu:YP5uFm4k/nLcxSqiM7+UlVGnEtrYu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\27171bd37242dcc6e71fff009f2b0a68_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    87acb0f0125e6fb2697dee45dc84092a

    SHA1

    c5fcca7dbd45564cd4258e105382c84f227bc1c3

    SHA256

    6138253cab4da60fb0d0306583eb42370d677983e28b8e7705cae8598e02aca7

    SHA512

    31725c8c5341c6e4da2056a7a824525c78b7cdc206d77edaf542abed0358e163275f27775619f077aa1c9024ed3b2cf663897567b19b3ba8e54e46e60806785b

  • memory/2320-0-0x0000000003ED0000-0x0000000003F46000-memory.dmp

    Filesize

    472KB