Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
23/08/2024, 14:00
General
-
Target
bc0560a326555cc320c608650c18f79e_JaffaCakes118.pdf
-
Size
77KB
-
MD5
bc0560a326555cc320c608650c18f79e
-
SHA1
aac9ac1c9a7c5d935aa14254bd1c83f47b9af439
-
SHA256
3ac77f23419db939a707a0282efd5d4ff79a0e18a7703910f6709eef4705c150
-
SHA512
3dcb2dbc0049dd75266aab12c88b2984649051b45bd9d84737765e94bb3eff1d3a97dbe08e98d0b35c093098111b9a6c889a09b319ae5d63d3580fd4b521f39d
-
SSDEEP
1536:A6v8OQLnjAXfXZniDxk938u3T2F6CjnRULyC04zIK0p/GFqFSOA:XkOcAvSCrShnRMf0IFqK
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bc0560a326555cc320c608650c18f79e_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51677608ae6940b61b37bea27f38f9ac3
SHA1567a1e84755d584586c563c71e1282cd87e56e1c
SHA256a4f5c0178f544921c0f6b0cbdfc9a4df8f0a49132fb6bf478afe7ea63109db36
SHA512adfaf3d9421298848d0ceca4bcef9c16f29903bce1ca949ba5a575f908e950ad16ddebef67cd6cd0fa6033dbebd490a85498710172b44eb9441577a47899d534