31.0.0 Red Diamond
IR
339452
CloudBasic
04:19:24
14/01/2021
Incaseformat
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
1ea8bea4055adc9edf91e03b0c80e68a
300b32ae0a70e86eecbccc2b850d783ded5a0f69
3c8c16428fe5b2d67ed59d543805e5ec63b3565f05305cbc193c961107e56f1d
Win32 Executable (generic) a (10002005/4) 99.96%
true
false
false
false
100
0
100
5
0
5
false
C:\ProgramData\Mozilla\lvrslql.exe
true
0174F8B5E7DD2E44B57EBBE3742B216F
182A5FA3FA20939D1646A8BB2D5D99D358AB0C67
E2830DBE2A0C182413532707C4A1D0005BF77F5A4275D743C40DBC5CD257AD01
C:\ProgramData\Mozilla\nnekebf.dll
true
186E739497337C4C3084CE81279271D4
2A31C24432B259926A7E5E33F7EB8C9AE57A517B
33F74F3530AF748C84DDDE066BF29E347BDA982FE81C742773951B1FF286CC0B
Creates an undocumented autostart registry key
Drops executable to a common third party application directory
Machine Learning detection for dropped file
Machine Learning detection for sample
Antivirus / Scanner detection for submitted sample
Antivirus detection for dropped file
Detected unpacking (changes PE section rights)
Detected unpacking (creates a PE file in dynamic memory)
Detected unpacking (overwrites its own PE header)
Multi AV Scanner detection for dropped file
Multi AV Scanner detection for submitted file