Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
14/03/2025, 19:25
General
-
Target
JaffaCakes118_754f876ff67e335fa2888d1b1188bb5d.pdf
-
Size
1KB
-
MD5
754f876ff67e335fa2888d1b1188bb5d
-
SHA1
4eb718bbbc1c34b93988ac0ea68b11c0a168c288
-
SHA256
0b042d88810d97aedcd294569d99f9028591ddd1dbecf190ddb028b096f7a7de
-
SHA512
6c4ddcd39b5ef655d3772e37c63efe08a683bb29cdb32897df76e27282aba1be3df9d594b0138a118123cd78fe41bb7b9b9dba72afaac399e9bb9b5d0609236a
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_754f876ff67e335fa2888d1b1188bb5d.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD53535e2e979f70cf0eaef7e57a05d828d
SHA1036644eadc35cc98e41d2677aedef663480c3715
SHA25621913f92aafa8fdf183033a72ef2bd4fefcad828a763fcfec9a8c8f46863e4ab
SHA512245753c1efce9720560c2eea3bb13d875225a6360fb544a66bc36e6453242f6455bd7f5fd345521c19bb14987919d983e0d0eea9f0aeeb9c700efe25eccfb13c