289c97a9b889179b4a13e6afb06626087ea18595c68f3541a8ec344da3e65382

Submit
Reports

Overview

overview

Static

static

skysim-air...-0.rar

windows7-x64

skysim-air...-0.rar

windows10-2004-x64

skysim-air...st.pdf

windows7-x64

skysim-air...st.pdf

windows10-2004-x64

skysim-air...al.pdf

windows7-x64

skysim-air...al.pdf

windows10-2004-x64

skysim-air...ds.pdf

windows7-x64

skysim-air...ds.pdf

windows10-2004-x64

skysim-air...DR.css

windows7-x64

skysim-air...DR.css

windows10-2004-x64

skysim-air...MC.css

windows7-x64

skysim-air...MC.css

windows10-2004-x64

skysim-air...om.css

windows7-x64

skysim-air...om.css

windows10-2004-x64

skysim-air...m2.css

windows7-x64

skysim-air...m2.css

windows10-2004-x64

skysim-air...AM.css

windows7-x64

skysim-air...AM.css

windows10-2004-x64

skysim-air...ge.css

windows7-x64

skysim-air...ge.css

windows10-2004-x64

skysim-air...AM.css

windows7-x64

skysim-air...AM.css

windows10-2004-x64

skysim-air...AS.css

windows7-x64

skysim-air...AS.css

windows10-2004-x64

skysim-air...AS.css

windows7-x64

skysim-air...AS.css

windows10-2004-x64

skysim-air...ND.css

windows7-x64

skysim-air...ND.css

windows10-2004-x64

skysim-air...FD.css

windows7-x64

skysim-air...FD.css

windows10-2004-x64

skysim-air...D.html

windows7-x64

skysim-air...D.html

windows10-2004-x64

Analysis

max time kernel
120s
max time network
132s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
19/02/2024, 20:58

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

2 signatures

Behavioral task

behavioral1

Sample

skysim-aircraft-md11-v3-1-0.rar

Resource

win7-20231215-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

skysim-aircraft-md11-v3-1-0.rar

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Checklist.pdf

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Checklist.pdf

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral5

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Operations Manual.pdf

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Operations Manual.pdf

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Speeds.pdf

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

skysim-aircraft-md11/Documents/SkySim_MD11_Speeds.pdf

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral9

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/ATC/SKYMD11_XPNDR.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/ATC/SKYMD11_XPNDR.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral11

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/CDU/SKYMD11_FMC.css

Resource

win7-20240215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/CDU/SKYMD11_FMC.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral13

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/COM/SKYMD11_Com.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/COM/SKYMD11_Com.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral15

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/COM/SKYMD11_Com2.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/COM/SKYMD11_Com2.css

Resource

win10v2004-20231222-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral17

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/A320_Neo_CommonECAM.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/A320_Neo_CommonECAM.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral19

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/SKYMD11_ECAMGauge.css

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/SKYMD11_ECAMGauge.css

Resource

win10v2004-20231222-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral21

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/SKYMD11_UpperECAM.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral22

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/ECAM/SKYMD11_UpperECAM.css

Resource

win10v2004-20231222-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/SKYMD11_EICAS.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS/SKYMD11_EICAS.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral25

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS2/MD11_EICAS.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/EICAS2/MD11_EICAS.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral27

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/ND/MD11_ND.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral28

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/ND/MD11_ND.css

Resource

win10v2004-20231215-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral29

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/PFD/SKYMD11_PFD.css

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/PFD/SKYMD11_PFD.css

Resource

win10v2004-20231222-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral31

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/PFD/SKYMD11_PFD.html

Resource

win7-20231215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral32

Sample

skysim-aircraft-md11/html_ui/Pages/VCockpit/Instruments/Airliners/SKYMD11/PFD/SKYMD11_PFD.html

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

skysim-aircraft-md11/Documents/SkySim_MD11_Operations Manual.pdf
Size

3.7MB
MD5

b50a1c9207dad0da69d143794027e16e
SHA1

dbd2266099ec0b6faad3c0659305358d1a6323bc
SHA256

83529011c57f93f8d452c5cd4e712b2441eff910164258468015fc30774d43f4
SHA512

8fa320a0e4606975baa44e392aca23e2ec43a17ac1580f7298eebff645808a308bf1724f3612a449729f3de12acd4a2543a7c1dd96a64d43b780d69c56cb1438
SSDEEP

98304:gaFQaQ0xtj3mli3iuqEi9kV/XLXFJs49ucz:6alj3mhudXV/XLXF+2uc

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2116	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2116	AcroRd32.exe
2116	AcroRd32.exe
2116	AcroRd32.exe

Processes

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\skysim-aircraft-md11\Documents\SkySim_MD11_Operations Manual.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
9ecdcd548a0bd23eb612f208ef1b5007

SHA1
72e51602627aa9a559a39bef1e2641a4f8db12ed

SHA256
73cba177f6794f4516206bf5fd75a81c54291a77f9b5a14a901c7c8c3eddec5e

SHA512
65d772ce56c9f984357957b86d8eb5f65f36cc5ddc77dbebbaa6c35497b541391acf363b21a3b8f7d1ba687d18ae5d04ac29edf11fbc3aa876d695adf2c6ec05

Download Submit