31.0.0 Emerald
IR
356539
CloudBasic
09:47:26
23/02/2021
USD18,620-00_swift-copy_mt103.exe
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
395a2f37acb7606721dd540c4bd25575
a1e28437c7d4c64fd087078e9063a4588f36018f
376e9cf15752762b0b38372261de1b2595816c2116100a2cf7164e5227b3a207
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
80
0
100
5
0
5
false
Contains functionality to detect hardware virtualization (CPUID execution measurement)
Machine Learning detection for sample
Potentially malicious time measurement code found
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
Tries to detect virtualization through RDTSC time measurements
Yara detected VB6 Downloader Generic
Multi AV Scanner detection for submitted file
Yara detected GuLoader