flash

d2ef5.exe

Status: finished
Submission Time: 2022-10-26 08:27:08 +02:00
Malicious
Trojan
Evader
Ursnif

Comments

Tags

  • exe

Details

  • Analysis ID:
    730728
  • API (Web) ID:
    1098081
  • Analysis Started:
    2022-10-26 08:28:49 +02:00
  • Analysis Finished:
    2022-10-26 08:35:09 +02:00
  • MD5:
    1d8a445bef0c0d4a7ec519f06c23224a
  • SHA1:
    7dd349b8664ec7dbe769da64e1b324ae091a29e2
  • SHA256:
    e807c46ba7cd53bf6900d1a8f32baba9a118410483faa68d51b233de738483e3
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

malicious

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
100/100

malicious
23/26

malicious

IPs

IP Country Detection
194.58.112.174
Russian Federation

Domains

Name IP Detection
siwdmfkshsgw.com
194.58.112.174
trackingg-protectioon.cdn1.mozilla.net
0.0.0.0

URLs

Name Detection
https://www.reg.ru/web-sites/?utm_source=siwdmfkshsgw.com&utm_medium=parking&utm_campaign=s_land_cms
https://www.reg.ru/web-sites/website-builder/?utm_source=siwdmfkshsgw.com&utm_medium=parking&utm_cam
https://www.reg.ru/domain/new/?utm_source=siwdmfkshsgw.com&utm_medium=parking&utm_campaign=s_land_ne
Click to see the 6 hidden entries
https://reg.ru
https://www.reg.ru/support/ssl-sertifikaty/zakaz-ssl-sertifikata/Kak-zakazat-besplatny-SSL-sertifika
https://www.reg.ru/dedicated/?utm_source=siwdmfkshsgw.com&utm_medium=parking&utm_campaign=s_land_ser
https://www.reg.ru/whois/?check=&dname=siwdmfkshsgw.com&reg_source=parking_auto
https://parking.reg.ru/script/get_domain_data?domain_name=siwdmfkshsgw.com&rand=
https://www.reg.ru/hosting/?utm_source=siwdmfkshsgw.com&utm_medium=parking&utm_campaign=s_land_host&