Analysis
-
max time kernel
119s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
-
submitted
04-07-2024 18:46
General
-
Target
25da68235e2ed8c0831f2291d124b830_JaffaCakes118.pdf
-
Size
7KB
-
MD5
25da68235e2ed8c0831f2291d124b830
-
SHA1
6352e9921cd9b43103e1226f8b7b9952b4e46dd1
-
SHA256
6fe2ea879772afec977cebc5bee4973719090c89e04593cad8b6d794802577c9
-
SHA512
14296b7c44451867552ad9ee9404a9efd6b933bf1676a448c20b444fa0b1014e12de6892373f5b10127ad764ec978c31912f3c0d14d278e6583064698ddb2063
-
SSDEEP
192:0P5uFm4kjwHds9pC2/5BtCz69IXqZGIs2yWiP4tPGG5VbxxYN:0P5uFm4kiuplxBtCz4mkGPSiP4tOGHxw
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25da68235e2ed8c0831f2291d124b830_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD548d8a7e8771b674ab91542dd78ec361c
SHA130d2931bc9f1efd0748596587700c771c7dea421
SHA256532c9ef0d2d4614c64fba9f20dbd3e4b7af523cee6b409f30cec856175e117d5
SHA5120a28b02d6e79d189b64f7617812f055b6409e7347b5dd184a1b972727c1e15a6ec4e245208c22a47c5d714eece0168c959b82ca612252777dbf895328bd0be8a
-
memory/2372-0-0x00000000034B0000-0x0000000003526000-memory.dmpFilesize
472KB