Analysis
-
max time kernel
121s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
18/10/2024, 00:21
General
-
Target
5470931daf87e6006914d6e88fe52f51_JaffaCakes118.pdf
-
Size
74KB
-
MD5
5470931daf87e6006914d6e88fe52f51
-
SHA1
e42bfcd16b4947d3eff6649dbc7b3758e1895b5c
-
SHA256
c15f191a908532d582e8669770f765ade3340c54886eaca0d856918a644c7638
-
SHA512
e43adbdf3acac34aa3b0cebdd4f1566f32ffa7445ad9bb8f92045f212b4876de891666eb34bbb0b9349e9dfd24e43542b7db09f086080ebccda4ec1c2ba022d7
-
SSDEEP
1536:C+8fuFby0emSRO8/l06z1U7jr8itKI+TaAVr9ccnhPZ0Y1ZyfewHEpPb8:POwby0lSRO8d4AitKID4rFz0YulH8A
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5470931daf87e6006914d6e88fe52f51_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5f3d6543196a531874d1ec2fe16b2fd3f
SHA19211afe8c8c5a81b38d6416153ae93bffd81bef5
SHA256fde20a39eaf17d02c92113d0a36030c90c9891aa8ab2ed66a45999437a16590a
SHA5129ffda392fc32b654774feb87e98f51c4f5746cdf7b96054f3d68e695a3cd3e2e9bfa58c4f04e3039e0a90fe7cd66ba726c247b88133ee516ca049b4af72863e1