Analysis
-
max time kernel
120s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
19-08-2024 00:01
General
-
Target
a8c358994a49c5484f6c6a78d641440d_JaffaCakes118.pdf
-
Size
43KB
-
MD5
a8c358994a49c5484f6c6a78d641440d
-
SHA1
240f656292513998fd2550f92508bfa0dfcbd5d8
-
SHA256
e7ce0000f54c013f14bcc632d027a4db3a23bc08087fb4c347cafb35e7a16a2d
-
SHA512
392762f2383f6e662088232781eb75737a15b3402cf97d5211f0272bfdd424e402c80264cddc322840d204be2682ba0a60fb70b4c2fb30bacc3751caeab5cca0
-
SSDEEP
768:/dzxq56oHRhFm6g4x/yQvt8g/2RqF7QXXLed8Lv8wtPNUEr:/dzKhFqpQvtB2RrXbe88whNUEr
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8c358994a49c5484f6c6a78d641440d_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD53366c594b5938d26ef4c284584bab81a
SHA133a0777caacaff764027486b2d74b7c963855895
SHA256c7bbdaf023133d6dd10cb564230c3b8c1f9b7f8dcd8964c5fb4923e1c41d6987
SHA51282c229cd872891229403096e8313c09f772b62c8d617963ad30e68ef9c38b37356bb110fe3cb2d46f782cad7cd140f7bb021bc5ba14a6534312387573d885bac