Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
04/10/2024, 07:40
General
-
Target
126e48be3e03282a1a5580d88ea277c1_JaffaCakes118.pdf
-
Size
72KB
-
MD5
126e48be3e03282a1a5580d88ea277c1
-
SHA1
793b276d9feeb362dcd1abc9e990e09f9627cf05
-
SHA256
78a9b9a70a93d23985625179b4ba077e3a3358bb902ef16d1b7aaaaad15eaa26
-
SHA512
f9afe0ad262a64c575ee1d55e81f9b40666da8df79071185d380c29508832a6ab1fb52581f6041d9ea70344c30220665ff5c799598f49faad8e68ae08ba20324
-
SSDEEP
1536:80QlMnYe+b+76qKMqpV+ssxJWDLUoqVAWsuvulWspORdZQgM:E6n9OXMqvBRDfc04usRdE
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\126e48be3e03282a1a5580d88ea277c1_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51bc1b154556ecbd54075fc223c1d610c
SHA134a894595eff257ff7ad5dcdc5804209ccca6d56
SHA2562c1341307c89dc6fd4845430ebb835aa403e41be12d62fd8c5548372958a7896
SHA51286698253064122b7f2e14fecfdfa55f8d7189f49d8e75d89290db13cab345af411c2d9683a3464e12c41e9cfbeb13ad5a4f08166b10aa9b0a1a39f3e4f54ade0