Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
12-10-2024 09:25
General
-
Target
394f2abb885e0c60e041a59877a90811_JaffaCakes118.pdf
-
Size
81KB
-
MD5
394f2abb885e0c60e041a59877a90811
-
SHA1
30bea81408b1e9fdfbf71d084f08bd8c5d63ea47
-
SHA256
6db284c63b24d08eff74f57c818964087df407116e521e46fb29bdf8c3b9cc54
-
SHA512
0225d1ae2caa1eba87a02f3f58cf6c9e1fc4dcdb1bb0e300bf02ff3086ec8be7fe1fde5f4165f3a81e938782c2d248288eb25fbe5a96fb42e7849f7690e01417
-
SSDEEP
1536:qwXAlQBF2uw2eQ+3N4FoXFOcvje4s3KWypOlWWxnEqNPq9lt3L:NQc2uw22DXkGa4QblDEqNPqbt
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\394f2abb885e0c60e041a59877a90811_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5870bd08130ed6b34e8c2e973162e15fe
SHA1d25936d4ccf0684bbfbce85b9414820124b95f8e
SHA25605bfe5bc1a47f9da0d6b3fa69e2fdb9af3622b65ccbc1f93313a9f97251884e3
SHA51269809aa8bcb9b1a11e0d92cb252d208bd984d347c11288ff2a4404e0eecdc55b3fe20521979f555ea3bbc691051b6013f37515fab3da1484ffa8f7052819f3f4