Analysis
-
max time kernel
122s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
19-09-2024 06:56
General
-
Target
eacd643df03c9af70e74d24451720fce_JaffaCakes118.pdf
-
Size
43KB
-
MD5
eacd643df03c9af70e74d24451720fce
-
SHA1
0f235a8c98d7f68a42cf3c8db8fba7e65b9a79cd
-
SHA256
2c89660d031622aba7a31f270e662dcfef3cc3e18434b916d53f9753778bcb76
-
SHA512
d61a3776d04582debbc79e84f4adc714262e5d36cf3049373a208f591593996a6baed6a8d0d5193ed9b4e79dd9bbe597627c9b3e53a887fa15f497e4cb59cdb3
-
SSDEEP
768:YyUIFLqslhyJnCpO6XV73gIeHIOyFYTx6TdCNFbPFdE1Sj9iEc3xZgja3PFdFLwP:YG7y5Cpp3X+uqttTW+
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eacd643df03c9af70e74d24451720fce_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD531b19b5f14a6f9128cb8231fca60dfc2
SHA174f17373d0aa7c1c32defd63364939d8f2f7ecf0
SHA25623e8968319b27469e70c55e542761e7b1a115c477b4e05f9efc2d518748c3f68
SHA512b0598f66400cdf2f766fc085b5a91078c669d6134f94d24468554eea6e140a0042aeb86c15a1f22febda6c83609cce99820b2641022c0eba46d17273f8bf9a1c