Analysis
-
max time kernel
95s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
23/08/2024, 11:50
General
-
Target
bb9c48d398b9afb5eed897693426b065_JaffaCakes118.pdf
-
Size
81KB
-
MD5
bb9c48d398b9afb5eed897693426b065
-
SHA1
106c45c48e97d71681cb15bce10a47b8c3129f13
-
SHA256
a23e45dfdd6a7386b16c85ab09a1733c37899e0a8a06bf7b95610e17c24f420e
-
SHA512
d89c317480179b8ddc07466d4831412501d21c6b2a36eda244dc3ab953d401da70d00e484445e53cad30c2939cb23d4316ee26116263a814364e8001456cc809
-
SSDEEP
1536:PUgkrcRNC/YjTy86PVXUpFBgqN5Ysh8Lbr/D4WOpOwrKWvpndMXOcac0UD:dbNC/Ey7UrBKr/D1wrNHbch
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bb9c48d398b9afb5eed897693426b065_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD59306fceda337d581f35060c435c3fdd0
SHA13526841c9edc5e6c1ffb1fa81b2ed883df03576d
SHA256ea83a623cfd5538a67abfef3c65fb020543fdc5c7744755400f056e29633a81f
SHA512df28cdb03633098dc1fcba9ba555522da9acf46529d46696d0204bdc80176e5afad92d3580ed05e244990cbb7f5a7a28150fa6b486c4db10ed3fea3d423b2df6