Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
19-09-2024 06:11
General
-
Target
eabc51fad18963871f5ac38834b53a94_JaffaCakes118.pdf
-
Size
43KB
-
MD5
eabc51fad18963871f5ac38834b53a94
-
SHA1
3e67fc98233484f05764ba8eb57cc7113b05f651
-
SHA256
0d67f72ff08880bc501b1659ada95a9b93f5d54c08a4afd5b158f5025e431d0e
-
SHA512
c39b0f93f15614750810033d3711f368fcbbf5484a0a5a626c665d74e8471c26b05e486be95b1817ba68f452b2dc66d92f9b607b2741732c80cadef65061b62c
-
SSDEEP
768:8XuMZmwgCLWarjE5HpuZA755r6PXtoEjuOdpPIkuG7ACWcUTljOT3SJzqdWNz05i:8XFZmGWSs8ZA755r6PXtoEjuOdpPI1+E
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eabc51fad18963871f5ac38834b53a94_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD504c2aefe8b7f1fef50e488e3c1f31c3e
SHA107bf6bc40d49aa3e7b5bcba3bf2fa298c04f1096
SHA2560d0f68ba07dfebaa501c0f17db20ec63bd97ac8f5eec27bd9481c44311fac13b
SHA5128331c80b8c1b8608a56dc7967480426ef0645a8b1bb73e533cb2ec69896d1c40cd5a5596a22cee06a118a79c0317af4c0aeaa27d4792155e5231ba5f70f046fd