Automated Malware Analysis - Joe Sandbox Cloud Basic

ID	Detection	Sample Info	Download Report	Classification & Info
1426837	Malicious Yara Snort Lokibot AV: 53%	FedEx_AWB#53023114643.exe 2024-04-16 17:28:06 +02:00	Full Report Management Report IOC Report	Info Class
1426834	Malicious AV: 12%	http://sfr-indemnisation.info/ 2024-04-16 17:24:09 +02:00	Full Report Management Report IOC Report	Info
1426833	Clean	Nexthink_Collector_Installer_Silent.exe 2024-04-16 17:22:19 +02:00	Full Report Management Report IOC Report	No classification & info
1426832	Malicious AV: 1%	https://docs.google.com/presentation/d/e/2PACX-1vT0H9eT4PcoyegTqKvLCT0rot4dyJa6nIDfnrx610SL6nwVFi-dTMpNO0mYjpM8BU-uE0pedvG-QWkx/pub?start=false&loop=false&delayms=3000 2024-04-16 17:19:38 +02:00	Full Report Management Report IOC Report	Info
1426831	Clean	https://samtee.com/ 2024-04-16 17:18:52 +02:00	Full Report Management Report IOC Report	Info
1426830	Clean	https://www.canva.com/design/DAGClbxS4CM/0aRj8j8Ev9jwS9CNHsAlbw/view?utm_content=DAGClbxS4CM&utm_campaign=designshare&utm_medium=link&utm_source=editor 2024-04-16 17:18:47 +02:00	Full Report Management Report IOC Report	Info
1426829	Clean	no Icon _REPORTE POLICIAL.jpg 2024-04-16 17:15:17 +02:00	Full Report Management Report IOC Report	No classification & info
1426828	Malicious Yara Sigma FormBook, GuLoader AV: 18%	160420241245287.exe 2024-04-16 17:15:06 +02:00	Full Report Management Report IOC Report	Info Class
1426827	Malicious Yara Sigma AgentTesla AV: 37%	e-dekont_html.scr.exe 2024-04-16 17:13:11 +02:00	Full Report Management Report IOC Report	Info Class
1426826	Malicious Yara Sigma AgentTesla AV: 42%	ReInquiry Lenght Error.exe 2024-04-16 17:13:06 +02:00	Full Report Management Report IOC Report	Info Class
1426825	Malicious Yara Sigma AgentTesla AV: 32%	RFQ#1047.exe 2024-04-16 17:13:06 +02:00	Full Report Management Report IOC Report	Info Class
1426824	Clean	https://my-yearbook.com 2024-04-16 17:11:45 +02:00	Full Report Management Report IOC Report	Info
1426823	Malicious Yara Sigma AgentTesla AV: 24%	Comprobante9404638600.pdf.exe 2024-04-16 17:11:10 +02:00	Full Report Management Report IOC Report	Info Class
1426822	Clean	https://www.dropbox.com/l/AADMt_ZaHT_hoHAzUbuMSCB681rYTSgmfiA 2024-04-16 17:09:59 +02:00	Full Report Management Report IOC Report	Info
1426821	Clean	http://my-yearbook.com 2024-04-16 17:08:34 +02:00	Full Report Management Report IOC Report	Info
1426820	Clean	https://www.baidu.com/link?url=CvCuJHQ5mUiF8tzYwW4LExI5DJ7e8SA78W1tu_uckwU-RgMoIZevncSlciEmtvdq&wd=cmljaGFyZC5wZXBpQGdlcmZsb3J1c2EuY29t 2024-04-16 17:04:03 +02:00	Full Report Management Report IOC Report	Info
1426819	Clean	https://ci3.googleusercontent.com/proxy/vOrPHt9ZJzDRYm5w1TXZnz7l43jh4ihTe_AydUfd1IsbrX4YTpTXDBugkh-cOnqla1vzxkTKQkv1PuRDwv8DhlwV-XbdJlhWq_QWeqMddpeVCV0=s0-d-e1-ft#https://www.docusign.net/member/Images/email/docInvite-white.png 2024-04-16 17:04:03 +02:00	Full Report Management Report IOC Report	Info
1426818	Clean	https://www.hr-benefits.site/?t=eyJhbGciOiJIUzI1NiJ9.eyJ0cmFja2luZ190b2tlbiI6ImZhMjk2ZDJmLTU4ZWQtNDYyMi05YzJmLWQ2MGRlODVjZThhMiIsImNlbGwiOiJodHRwczovLzIxZzZqZnZoeTYuZXhlY3V0ZS1hcGkudXMtZWFzdC0yLmFtYXpvbmF3cy5jb20vcHJvZC9hcGkvcGhpc2hpbmdjYW1wYWlnbiIsImNhbXBhaWduX3Rva2VuIjoiYmU1ZTQxOGQtZmRiNi00N2IwLWFmZjItN2Y4ZTcxMjQ4ZmVhIiwidGVzdF90b2tlbiI6ZmFsc2UsImV4dGVybmFsX3RyYWluaW5nIjpmYWxzZSwiZGlyZWN0X2RlbGl2ZXJ5Ijp0cnVlLCJpYXQiOjE3MTMyNzgzNjksImlzcyI6Imh0dHBzOi8vYXBwLnBoaXNodGhyZWF0LmNvbSIsImV4cCI6MTcyMTA1NDM2OX0.Qa0DWnRj-q6Y-9K9dNCNoX-fwlEkDB9HInaE65rddd0 2024-04-16 17:03:38 +02:00	Full Report Management Report IOC Report	Info
1426817	Malicious Yara Sigma AgentTesla AV: 61%	COPIA DE PAGO SWIFT.exe 2024-04-16 17:03:07 +02:00	Full Report Management Report IOC Report	Info Class
1426816	Malicious Yara Sigma GuLoader AV: 8%	no Icon orden_0099896754537687897657436786756785654576.hta 2024-04-16 17:02:07 +02:00	Full Report Management Report IOC Report	Info Class

Windows: InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files Contains malware configuration(s)

Customization Show ID column

Analyses Overview

Search started

Yara Super Rule creation started