Analysis
-
max time kernel
94s -
max time network
20s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
13/09/2024, 20:22
General
-
Target
ded6a85be0f4954ed78745d4c7043434_JaffaCakes118.pdf
-
Size
43KB
-
MD5
ded6a85be0f4954ed78745d4c7043434
-
SHA1
80b8836018dec7d861e9a223f3855bc50c63521a
-
SHA256
982f3e41d8c29dd821f8d1c68968f621d049d3b587c51b6093746ce09169f5fa
-
SHA512
715e499d3b99ee656a99964bf829bea08f8f59318cc3f0433de7c5b9e59a632626106ea8d7e36cfe2acf4335e01a1a38d2ac2a7eecd1978cc683ce2220a9a402
-
SSDEEP
768:BgGzpDlpm/Q97DfI9eBAh/GGGG2i3CowhAGGp3DHQqjmcO28noa7CtKYpZ3kCs:yGFZpm/3GGGG2i3CosAGGVmcO285CRpu
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ded6a85be0f4954ed78745d4c7043434_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD506ef8db80605933d7b316714e2d1d70e
SHA16516ee5d4d9dce6188d70615cfda60ccf5186719
SHA256366c194fe6ab2db6d42d0aecd66ac4d8ba7a327e560edffa0e70edc1cfcd098f
SHA5125f3927d9f1b2b8d87b01ea38834eae1c2fb685d9fe7a04455986ba722da3597bc111510b62c60df896bfdc83b1e33f51da69b5029bc85fd64bc67571343ebed1