Adobe_Acrobat_Reader_DC_2023[.]008[.]20555_x64_Downloadly[.]ir[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

Adobe_Acrobat_Reader_DC_2023.008.20555_x64_Downloadly.ir.rar
Size

389.8MB
MD5

79bc7aec82d379b0af9b86ac7eca2ea4
SHA1

96b10812965056b679225bf5667131766305377d
SHA256

91e81a4b20c4d55a96c1b1d61bd1193a739e43e8783275dfe2b8cf1554050c22
SHA512

bbd5a75502895a21222a15172bf19c80fb731826e01da65b078b71e3c64ad27b1fee6b3a26f05c9801aefcf1e06887c02edb3f36ce231aeb38271bdd6adb28d5
SSDEEP

6291456:TzwRUHohZ0VHvxI0/r8tqbDEPqfTAXcSrW3o1Q2auqkxIwz3OM:JohZTMb4P1XLW3oJqGDLOM

Score

1^/10

Malware Config

Signatures

Files

Adobe_Acrobat_Reader_DC_2023.008.20555_x64_Downloadly.ir.rar
.rar
Adobe Acrobat Reader DC 2023.008.20555 x64/AcroRdrDCx642300820555_en_US_Downloadly.ir.exe
.exe windows:6 windows x86 arch:x86

4281c0e7bfa1da52eac152e2da943bfb

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0d:1a:34:0f:78:d7:d0:00:e0:89:fd:ba:ad:65:22:df
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

03/11/2023, 00:00

Not After

04/11/2025, 23:59

Subject

SERIALNUMBER=2748129,CN=Adobe Inc.,OU=Acrobat DC,O=Adobe Inc.,L=San Jose,ST=ca,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130844656c6177617265,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

71:99:9e:ea:5f:1d:4a:2f:bc:d7:48:76:12:d2:6c:32:07:73:6e:60:9f:dd:37:99:ae:19:3f:d3:0c:90:dd:b2
Signer

Actual PE Digest

71:99:9e:ea:5f:1d:4a:2f:bc:d7:48:76:12:d2:6c:32:07:73:6e:60:9f:dd:37:99:ae:19:3f:d3:0c:90:dd:b2

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

AdobeSelfExtractor.pdb

Imports

kernel32

TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetCurrentDirectoryW
GetLocaleInfoW
GetSystemDefaultUILanguage
GlobalFlags
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SetErrorMode
VirtualProtect
GetSystemInfo
VirtualQuery
LoadLibraryExA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
FileTimeToSystemTime
IsDebuggerPresent
GetStartupInfoW
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
LCMapStringW
ExitProcess
GetStdHandle
HeapQueryInformation
GetFileType
SetStdHandle
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
SetEnvironmentVariableW
GetDriveTypeW
GetCommandLineA
RtlUnwind
OutputDebugStringW
SystemTimeToTzSpecificLocalTime
FindNextFileW
FileTimeToLocalFileTime
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileIntW
ResumeThread
SuspendThread
SetThreadPriority
InitializeCriticalSection
LoadLibraryA
GetCurrentProcess
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetCurrentThreadId
GetCurrentThread
MulDiv
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
LoadLibraryW
GetModuleHandleA
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringA
GetACP
lstrlenW
GetVolumeInformationW
WideCharToMultiByte
CreateThread
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
SetFileTime
HeapFree
CreateDirectoryW
SetLastError
MoveFileW
GetUserDefaultUILanguage
RemoveDirectoryW
SetFileAttributesW
GetExitCodeProcess
CreateProcessW
ExpandEnvironmentStringsW
GetPrivateProfileStringW
SetEvent
Sleep
WaitForSingleObject
ResetEvent
CreateEventW
GlobalMemoryStatusEx
GetEnvironmentVariableW
GetVersionExW
GetTempPathW
DeleteFileW
GetCommandLineW
LocalFree
FormatMessageW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetFileAttributesW
GetFileSize
CloseHandle
GetLastError
CreateFileW
SetFilePointer
WriteConsoleW
WriteFile
ReadFile
SetDllDirectoryW
GetSystemWindowsDirectoryW
GetModuleHandleW
GetProcAddress
InitializeSListHead
SetCurrentDirectoryW

user32

RedrawWindow
SetForegroundWindow
GetForegroundWindow
UpdateWindow
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
UnhookWindowsHookEx
GetDesktopWindow
SetActiveWindow
EndDialog
CreateDialogIndirectParamW
DestroyWindow
GetLastActivePopup
GetWindowThreadProcessId
SetCursor
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
CallNextHookEx
SetWindowsHookExW
GetSysColorBrush
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
CharUpperW
IsDialogMessageW
GetWindow
SetWindowLongW
GetWindowLongW
GetWindowTextW
IsWindowEnabled
GetFocus
SetFocus
GetDlgCtrlID
GetScrollPos
SetPropW
GetPropW
RemovePropW
GetWindowRect
AdjustWindowRectEx
MapWindowPoints
CopyRect
PtInRect
GetClassLongW
GetClassNameW
GetTopWindow
WinHelpW
MonitorFromWindow
GetNextDlgTabItem
MessageBoxW
GetSystemMetrics
PostMessageW
LoadIconW
SendMessageW
IsIconic
GetClientRect
DrawIcon
IsWindow
EnableWindow
UnregisterClassW
GetDlgItem
SetWindowTextW
FindWindowW
SendDlgItemMessageA
SetRectEmpty
OffsetRect
GetParent
GetSubMenu
GetMenuItemID
GetMenuItemCount
PostQuitMessage
ShowWindow
SetWindowPos
GetMonitorInfoW
LoadCursorW
DestroyMenu
InvalidateRect
KillTimer
SetTimer
RealChildWindowFromPoint
GetCursorPos

gdi32

GetClipBox
GetStockObject
PtVisible
RectVisible
RestoreDC
SaveDC
SelectObject
SetBkColor
SetMapMode
SetTextColor
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
Escape
DeleteObject
CreateBitmap
GetDeviceCaps
DeleteDC
GetObjectW
CreateFontIndirectW

advapi32

RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegFlushKey
RegCreateKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW

shell32

SHGetPathFromIDListW
SHGetMalloc
ord165
SHGetFolderPathW
SHGetKnownFolderPath
ShellExecuteW
SHBrowseForFolderW

shlwapi

PathStripToRootW
PathFindFileNameW
PathIsUNCW
PathFindExtensionW

ole32

CoCreateGuid
CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

VariantChangeType
VariantClear
VariantInit
SysAllocString
SysFreeString

Sections

.text
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 378.2MB - Virtual size: 378.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4281c0e7bfa1da52eac152e2da943bfb

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0d:1a:34:0f:78:d7:d0:00:e0:89:fd:ba:ad:65:22:dfCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

71:99:9e:ea:5f:1d:4a:2f:bc:d7:48:76:12:d2:6c:32:07:73:6e:60:9f:dd:37:99:ae:19:3f:d3:0c:90:dd:b2Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

shlwapi

ole32

oleaut32

Sections

.text Size: 265KB - Virtual size: 265KB

.rdata Size: 84KB - Virtual size: 84KB

.data Size: 7KB - Virtual size: 26KB

.didat Size: 512B - Virtual size: 36B

.rsrc Size: 378.2MB - Virtual size: 378.2MB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0d:1a:34:0f:78:d7:d0:00:e0:89:fd:ba:ad:65:22:df
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

71:99:9e:ea:5f:1d:4a:2f:bc:d7:48:76:12:d2:6c:32:07:73:6e:60:9f:dd:37:99:ae:19:3f:d3:0c:90:dd:b2
Signer

.text
Size: 265KB - Virtual size: 265KB

.rdata
Size: 84KB - Virtual size: 84KB

.data
Size: 7KB - Virtual size: 26KB

.didat
Size: 512B - Virtual size: 36B

.rsrc
Size: 378.2MB - Virtual size: 378.2MB