Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system -
submitted
10-07-2024 21:08
Behavioral task
behavioral1
Sample
3663630bee6de1d9b5adea8c32b55dcb_JaffaCakes118.pdf
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
3663630bee6de1d9b5adea8c32b55dcb_JaffaCakes118.pdf
Resource
win10v2004-20240709-en
General
-
Target
3663630bee6de1d9b5adea8c32b55dcb_JaffaCakes118.pdf
-
Size
76KB
-
MD5
3663630bee6de1d9b5adea8c32b55dcb
-
SHA1
6aa342c4e381d2db70a11c464310c04641f88fdd
-
SHA256
d2cf0e9b43476991e4bcb83b8d6915a44b19d2cfa933d3ba33ac951316c5f996
-
SHA512
16ffd70d8c115047c1cb82dc131c498045c4c63a76f266bda956e58ea157ae650d6a86e92b2c6ef45512bbe476b5d208c626ebb8af58d98663415714cff843db
-
SSDEEP
1536:6ACZzkGxj1of5ELhziBNhsD8XhW6U15tZMh5xSuWspO2A62NK4:VCue9zcNhsDqz8ZMJS92Q
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2764 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2764 AcroRd32.exe 2764 AcroRd32.exe 2764 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3663630bee6de1d9b5adea8c32b55dcb_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2764
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5d824e022565502de18f62bd5d6c5ed9d
SHA1b7f42458a490da9e0eeb1cf98fea0e76b95c180b
SHA2569d82c07780b6bde1de2fb84a28b4413584182920e1a52ff31f1700898d6a3bbf
SHA5127de17a607fe3735f1e97dbe250f3ab8361c41804015daa44b948172ab52d26a1e6cd37a17af1964e49892ee7105520a01b8833ae01dc5f8ae341ece5f399fdff