Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
03/10/2024, 21:52
General
-
Target
10a270459e7a781776a9859857363708_JaffaCakes118.pdf
-
Size
39KB
-
MD5
10a270459e7a781776a9859857363708
-
SHA1
172a5339ee92dec4e4c021aa84909bc5823cfece
-
SHA256
d3f8f513e6edfd87bef2548d264534968b998da442aa56c14a50e5bca7c933d0
-
SHA512
91ab6e6b0651ba6b65c08609996acddfeb66216119de95eff2b8d8ad44904728106b66d23d26dff63fb370f25a595e42c89b9ce0f376062490b67c73afa41350
-
SSDEEP
768:8gGzpDdqQofx6VoMTgKlBqe/n7xXYYBO0G:ZGFJqQuSqe/7WAO0G
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\10a270459e7a781776a9859857363708_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD50f5dc8a717193b19a4570940634b6d29
SHA1b4937c76b430884bd73672d4cfce818e0104d26b
SHA256ca5579a78f35a6461b788284c5fc987111e2d29edd43eb688a5c9bb064497f22
SHA512e123de3724477efa88f24b6410bd609fd826f0dcd85ad02059911732968f11d8a6ecd89e7cfda5dd31da54dec1b788f52782388c16c85fccbe0f74a01af645c9