Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
09-10-2024 06:59
General
-
Target
2cda30e0c3911a54bc3dac6ebe2f9e38_JaffaCakes118.pdf
-
Size
86KB
-
MD5
2cda30e0c3911a54bc3dac6ebe2f9e38
-
SHA1
218ea90396cf495184553f07ee60d98b86f2899f
-
SHA256
0ddede2ceecd22498cc96ecfe32a5286ebeb375a4c5903fa23ea5ce033b8899a
-
SHA512
661655e4f60fb1a898b42b1a7b34c544181fcd46d7339c35a79621302050516ea8dbc83e572a40e3eb9b5d52c54421fe64dbbe745701bc966f6b9a9a7e312ccb
-
SSDEEP
1536:PnayOTQPclMRD4hv/AqD1in6drBOKuZWQpOCst98TW1Y5SorNQKg:vaxQPclMRkhvpDw6pvCVHvrN0
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2cda30e0c3911a54bc3dac6ebe2f9e38_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD52faeea5c700c57ccc2a534ef05ef1216
SHA1864384d541231119a5bb1e5ba2181c6daf97d0c2
SHA2565a1d7b5126c188d8c4282472fe3053a2a92001170dfcb98d28f33765abfc2aef
SHA512f25764f0615ee349b377afdcaf86af15dde2d15af1cce20c7cdac5e4473b7e44faf9ccbf1d48450a5fadbf5bc1afbe33373d289c0d53ca826b7be19c02812e6a