Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
08-12-2024 14:35
General
-
Target
d78b4d5b65b38eb63d709db080bb0fe0_JaffaCakes118.pdf
-
Size
66KB
-
MD5
d78b4d5b65b38eb63d709db080bb0fe0
-
SHA1
cb0de8c9b0439a1c86a166898fa79d8a5b2d10eb
-
SHA256
98bb0e913f703a9a125c411f17572e62d407e348c40609e2274a81c8f801e7b2
-
SHA512
b88861fea800448fab3fb96d06dcaaa4942ad3b9f8eff6b5a12ab44bb1a9442337bd8bb92500ed7d116bb928137969c8fdcdecc4d08dff9de00da0a8cd89441d
-
SSDEEP
1536:dgVB9AQExEfZfNSzzDMo/f+GQ/TJ+ibvgvjSOceEgjpcBv:uLK6z0fXbQ/1+iLmceEg94
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d78b4d5b65b38eb63d709db080bb0fe0_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD538e060dcbe97abd7e3435e3a7d7528a4
SHA11ffe7dd84ed3feaf5dce730d5359d715cc1714ac
SHA2569a8332386546b59c069fc6a2c170244bb32ef0a20a9931071539668e4ad25f87
SHA5129245168687dcdb517f742928be584498fe4aeb57bb45b3cb7a13dba2bac9f3454207d09db10c73213f5724b9e22a1a54baeb8c920723bb3486bfe0be9cdfadb1