Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
02-10-2024 01:29
General
-
Target
0841a8de4dd65ae83d45bdc4128a79d8_JaffaCakes118.pdf
-
Size
85KB
-
MD5
0841a8de4dd65ae83d45bdc4128a79d8
-
SHA1
5d632ef20d25885a0358b71f39cec48fb82410cb
-
SHA256
b26b14e669f242f3931523b43f3e936c5610943bfcc220d8a3479c239ee87926
-
SHA512
e7c1392e3c2ad8cc96c5b472f67b753d85c3a34cbcd835e97d134debcbe99832b381297d83517f32f2fbd325b545a4b81b93a1d5ddbd873dcfa0b7f00b4bd7e3
-
SSDEEP
1536:YY2bR2ydizUxUZUajFLWOkJeUdtNkhRuWdUp8uMjWapOtQb7Zn3o:RkR2HUqKBOkJn4hqp8HMtQb7Z4
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0841a8de4dd65ae83d45bdc4128a79d8_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51dec8c805e455e69a50454c852c0d7d7
SHA163e5495cff62530fed7eeb1486a3fde557d8b21f
SHA256c8d4c738228fda1eb4a2832d19ffba34146a3ddf8d28b7d5901841950631e24e
SHA5122295c8ab14c384de6471dcd358390a6ed52d9181fb73857b85c0ddfbd21f273079bba511afa852fc5159aefb652405747b59da84ddc1f4bf244b738b5ecc2131