31.0.0 Red Diamond
IR
338418
CloudBasic
08:45:54
12/01/2021
RFQ-PR#20211201.exe
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
7f460fbf235c5e678b553edd2113d890
6cda9cecf924e6e2fe967ed0ad0c1d189e41fb81
1c9344d3993bafbe60739644d0fae336276c4ffd835da89d44b58ef4d744eee0
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
80
0
100
5
0
5
false
Detected RDTSC dummy instruction sequence (likely for instruction hammering)
Found potential dummy code loops (likely to delay analysis)
Potential time zone aware malware
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
Tries to detect virtualization through RDTSC time measurements
Yara detected VB6 Downloader Generic
Multi AV Scanner detection for submitted file
Yara detected GuLoader