Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
02/10/2024, 05:18
General
-
Target
0911f494a29da5c081b2646c9cfae0ee_JaffaCakes118.pdf
-
Size
100KB
-
MD5
0911f494a29da5c081b2646c9cfae0ee
-
SHA1
a9337c0740d754d7da6aa0bf3c47cff34927a05a
-
SHA256
61cff52060eb6ae7c7c58f9853a0c2f1f30df3b57865fa0a82d620d4cce1be9a
-
SHA512
3ae0d14fcf7068504fce4cb3073015428407eccbdeb554cffbc03063fb7591fbc3dda6b0528c3df7993dab9eea79a0cb29347656ed0112ffd12754f9412a4107
-
SSDEEP
1536:rF4vQ7afuJztv3IhRp1M5y1FCH7QQ8y1QW9WGidSH3BWcpOmXBH0MntG:5d4Ro5ybCHUPO1HicH3YmXR0ME
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0911f494a29da5c081b2646c9cfae0ee_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5583ddf626f041de579f25efbaef927db
SHA12b42df1881f29e9e5615efc0cda333189a9e0ba5
SHA25645fd14aa37515d3f61f866332f3d50c052e4ec12d9be4e2baac5854f774beb16
SHA5122a023fcfdb76220db0c74e984395dbe6b42ebca63bf7a84d12b6c5fefe4bb2d665e62a9fb2e2ff02b29f834786a9d1120320a299586be72542bd65621c212ece