Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
10-07-2024 21:06
Behavioral task
behavioral1
Sample
3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf
Resource
win10v2004-20240709-en
General
-
Target
3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf
-
Size
85KB
-
MD5
3661c0dc70cc8ce3d9acac70afeed5fe
-
SHA1
fb1f699b1424988e084a83a99dc71684e7ff53a2
-
SHA256
2d5f78d1e11a3d10d4c68c9d9640126015b76dd94d7851741f97d8008ac595d6
-
SHA512
54b06dbdd29ddfe735e9f1c20e7404c6280615c1e9b3b84893fd453ef80f79e2ba3818cddf97a0447f5fe922f45fe1068c69c43f73dff7d7b6bf3c6b3f198e52
-
SSDEEP
1536:w8cbVDsd5zQM4hmyebqory4EEmmzCPKui9zXdWCa0ltu0M+lyWOpOwrn98lLvvEe:6SEMrxEEvCPViqCjlT/nwrn9MTvExY/V
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1960 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 1960 AcroRd32.exe 1960 AcroRd32.exe 1960 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3661c0dc70cc8ce3d9acac70afeed5fe_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1960
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD54bf5156bcb6cf6a71e82fd1d566cf4bc
SHA10e38f4c1696e3bc97f71f492c370304cbc4f58f3
SHA25684a770ea6a01fc0238963a22491b30f50595edbe1a41d854e1f063e0e20b299a
SHA512208d25aa71e20b96fdc03bae030cbf5bfac8d9890cbe7e510ce43cc4597da6bef38cb0383e89e31aefac73adf8422ec6ef0be6a80033a46313b8080d07514a70