Overview

overview

8

Static

static

4

ClickShare...er.msi

windows7-x64

8

ClickShare...er.msi

windows10-2004-x64

8

Quick start guide.pdf

windows7-x64

1

Quick start guide.pdf

windows10-2004-x64

1

[KB11496] ...CM.pdf

windows7-x64

1

[KB11496] ...CM.pdf

windows10-2004-x64

1

[KB11526] ...ly.pdf

windows7-x64

1

[KB11526] ...ly.pdf

windows10-2004-x64

1

[KB12000] ...I).pdf

windows7-x64

1

[KB12000] ...I).pdf

windows10-2004-x64

1

[KB8544] B...ny.pdf

windows7-x64

1

[KB8544] B...ny.pdf

windows10-2004-x64

5

Analysis

  • max time kernel
    158s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    03-02-2023 08:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    [KB11496] Deploying the ClickShare App with Microsoft SCCM.pdf

  • Size

    757KB

  • MD5

    f2e87dab2a596337f670de0ec086bfae

  • SHA1

    8f8bdc3fae1d477369fffe0447d3f2bcc70d4075

  • SHA256

    24bf627a4b5d741ae500676d7a8e3ab38f783c10d45c34301e6a8e013b544788

  • SHA512

    36d802da7d6f8dbdee9fe72209eb08cf7ec9c4da9d17018385b95f6f3eaae2c2eaac80665c9923eb8a3d5afef4f9477c80828fe2893ef7a9dd39e7df484aa94d

  • SSDEEP

    12288:itF0eH1pXHF4zdLDH5IFXlMk2eH1pIZJplDhXl5XUBQmV5XUBQS/2a:ij0QH3SdXZHk2QHmjlhVPmPSV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\[KB11496] Deploying the ClickShare App with Microsoft SCCM.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1712-54-0x00000000760C1000-0x00000000760C3000-memory.dmp

    Filesize

    8KB

    Download