Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    11-01-2025 06:49

General

  • Target

    JaffaCakes118_f9fcbc30064907d116262929f33b123e.pdf

  • Size

    83KB

  • MD5

    f9fcbc30064907d116262929f33b123e

  • SHA1

    aabe79b194db9294b54c753066b725f061c9ba51

  • SHA256

    cb1673c8b74a12fc3d3938a3da8ebb40dddd37f59a90159cff2e71abef579bf3

  • SHA512

    12a4663ecfb93996633ce49e847aab536014df7b6f241baceb66dfdeab264a6db241459f83df908b7794deccd408e72338618ba21ffaf6a41c226cdfa1cf621f

  • SSDEEP

    1536:oRoHzBT78QN4TOPq+txGl7OrsBPb5zSSicVqndPxYlWzzGttjW6s8AWUpO7e+F:F9TlHq+txGlqYBj5Ac4dPeczkNWJ8D7X

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_f9fcbc30064907d116262929f33b123e.pdf"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2836

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c7d5a63b46d33e68a96137c4a510fb97

    SHA1

    28412f633221ae2dea6fb6e5c4a9dd50f3658a01

    SHA256

    430bf8972e416a749555079facdd25ba5fc88e46856b4ba1804bad591e89c965

    SHA512

    91067ec4e68e5becd13f1f6d6cb71987df304f5426545e85d52dde10b3192ddfc2071f4b6be83bc599ddab1182c28a2d265dd7db0fe69a6f94535b779133f052