Overview

overview

8

Static

static

4

Install_FSUIPC7.zip

windows7-x64

1

Install_FSUIPC7.zip

windows10-2004-x64

1

Install_FS...C7.exe

windows7-x64

7

Install_FS...C7.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

MSFS.bat

windows7-x64

8

MSFS.bat

windows10-2004-x64

8

Install_FS...C7.pdf

windows7-x64

1

Install_FS...C7.pdf

windows10-2004-x64

1

Install_FS...ME.txt

windows7-x64

1

Install_FS...ME.txt

windows10-2004-x64

1

Install_FS...es.txt

windows7-x64

1

Install_FS...es.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 03:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Install_FSUIPC7/Installing and Registering FSUIPC7.pdf

  • Size

    243KB

  • MD5

    c08cc90cd2c85c2ca8d0a0050eb66507

  • SHA1

    2dadfe9c2b09ba5c55e5dac00c91ac1e90468b3b

  • SHA256

    4dabd46804d75f9d6202295b4d8dc00f12d7d5feac7af9b9df1522fabbf2ace3

  • SHA512

    6457e5ec7082b9d5b7f84be94d7223a6312cf2523fe7eb9c5729074623fd22dc8c171306a4bd1c5a9e9635f38ea68eaf535f456379f95f8c79ecb4ca6510c02d

  • SSDEEP

    6144:TSnKgSfbz1Q4eK4UcQzzdGU+1+ICxmY5981ppeepaPvlbSiZ:xgmbuK4gndV+Qx59+09Pvl+e

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Install_FSUIPC7\Installing and Registering FSUIPC7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b6233dab68e0b8b2d22324a571d4829d

    SHA1

    98e1230dbd80b4cf3953256d81ec4e434b7ac79a

    SHA256

    45d238be597ebd84ddd82d6e95e7ffd65bc6d896fad6ba4084c05c8731a8e6ea

    SHA512

    9c6a76216af92857128fa8643a4a69555bd585f83e480dcd67e671ce60df7f52deec9cb029a4e432c3abf2bccca2d3d806ed068ba88c6a97ae0f89c55d051ec0

    Download Submit