Analysis
-
max time kernel
120s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
11-01-2025 06:45
General
-
Target
JaffaCakes118_f9e35beb95a21216f0189f562f064377.pdf
-
Size
94KB
-
MD5
f9e35beb95a21216f0189f562f064377
-
SHA1
ed81498201c4f4373ba93d144465316c786b1a28
-
SHA256
7739edc7de5b4e556036c3dc28c5426bf10709a1179b10bc5476dd65d4de2c6d
-
SHA512
ea21ed9784c48960ef280a18441d1739ebe71c5fe7cff8e5e23d1fb3a9c8f5efc4e5b2490ffc54cff8cd77920153de422b0b3935d6df1c8b65bdf06f94815e72
-
SSDEEP
1536:1qAIZpp0e4awFnNa4SLdRaAdA/W3jY6ZWbpONiWwqp9zvuujfq:eDRjwB4ZLvJwSY6bNVp9zv5O
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_f9e35beb95a21216f0189f562f064377.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD55ee543d019f120df0faae2b0205a295d
SHA1f672d199f61251695d5b4e009884a024928b275b
SHA2562178a128a0ffbf4a76aea771034a1b05151ba33802cf945fcfeb003497712262
SHA5124cc540b9827ba8c0be0ab823617eeeae6f0b8e81a8cac5be81377c71fb41ceb7dab930affcee3246ea4e6d0b1b92aef984ad0d9aa7049f4efbe69686e0fb2496