Analysis
-
max time kernel
117s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
22/08/2024, 22:14
General
-
Target
b9525e695e987b5f2c77fdb5e59aec78_JaffaCakes118.pdf
-
Size
82KB
-
MD5
b9525e695e987b5f2c77fdb5e59aec78
-
SHA1
51bc14d1487bdb8f19bb1028ff806002c7730743
-
SHA256
5385dba543eca5c624754377c804e786a1bf351cdedeeb18ecf3c500551275ee
-
SHA512
39d0eec8c7a1e0563c8c626e1e2074ea7d913c81d3dd7fb644178275ef80cd16014b2dcf9a4dc10842e8b5d51adb9eb1826f1f3a772eed9cd712564e6ad6848d
-
SSDEEP
1536:De6zMJfxMbnq32oyWWvywRcgXayhluZ8WHfHb+iWGpOmkT+zjWdY+q:CuefmBWYywmgXHl0jCTmkWjWdy
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9525e695e987b5f2c77fdb5e59aec78_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5295d0ecc51c2c49ae73df435cf96bf54
SHA170ca039cc136bf7eb20779233874081561955341
SHA2568ff5080de907e5e10fe08e84bc72092e476cfd96f9e6de8cf08c5e355875ed3b
SHA512191949de6a3d7650020f8e48866d4a2675a027d775d45b9fcbab54518851a98f9c5957e650f947761885dea11653592703c93957fe248cfa652236d771639591