Analysis
-
max time kernel
96s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
09/10/2024, 05:02
General
-
Target
2b510bb29c7e3e24a615fa2413938527_JaffaCakes118.pdf
-
Size
91KB
-
MD5
2b510bb29c7e3e24a615fa2413938527
-
SHA1
45a31730307955b27b98c90036d9b27174a7abb4
-
SHA256
e95aa730c22258ab88459f0faecb509ebe457e6c8728fb8376d089de436587cf
-
SHA512
323603f14d412b89ded9502500dc284dc61e07855ee60b21e2a23b80b0161b498c3abcab2d895d5e7bae90105fe3e2fc7994673e07c3163be4d72c6d5084d16d
-
SSDEEP
1536:RkucrlNuHuMQ8BuN0t+itlZbo7liNMEY7aY+SqW6oAoKAKJaHlPLPAWhbaeMWcpD:DOlgS0t+iFb4iSb7aYXzMejPMeXmf
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b510bb29c7e3e24a615fa2413938527_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD598966f6cfb16ba5633aa0c31540e2be0
SHA144f2e8fcd204072bf2f6b543756aeefdb68e196c
SHA25676c5ced14e3e275abe95455dd4baf54c788748e78e23f99d22fbe88e593944c6
SHA512649fa503839fe37ebcd6c40de0309d76e8adb98fd03d4771c750d76c0c9350e0e88c16142a3f1c68e26e12384045e49ba27bb78ebdbfe934714f4b0ff9fd6766