Automated Malware Analysis - Joe Sandbox Cloud Basic

ID	Detection	Sample Info	Download Report	Classification & Info	Graph
1432030	Clean	https://microsoftoffice-files.powerappsportals.com/ 2024-04-26 10:14:48 +02:00	Full Report Management Report IOC Report	Info
1432029	Suspicious	tcpip.sys 2024-04-26 10:13:57 +02:00	Full Report Management Report IOC Report	Class
1432028	Malicious Yara Sigma AgentTesla AV: 58%	Purchase Confirmation 003-23 170204.exe 2024-04-26 10:06:09 +02:00	Full Report Management Report IOC Report	Info Class
1432027	Malicious Yara Sigma AgentTesla AV: 32%	Quotation Order.exe 2024-04-26 10:06:08 +02:00	Full Report Management Report IOC Report	Info Class
1432026	Malicious Yara Sigma AgentTesla, PureLog Stealer AV: 47%	Remittance_Advice 26042024.exe 2024-04-26 10:06:08 +02:00	Full Report Management Report IOC Report	Info Class
1432025	Malicious Yara Sigma FormBook AV: 47%	150-425-2024.exe 2024-04-26 10:05:17 +02:00	Full Report Management Report IOC Report	Info Class
1432024	Malicious Yara Sigma Snort AgentTesla, PureLog Stealer AV: 45%	20240328-REV2.exe 2024-04-26 10:05:17 +02:00	Full Report Management Report IOC Report	Info Class
1432023	Malicious Yara AgentTesla AV: 32%	CHEMICAL SPECIFICATIONS.exe 2024-04-26 10:05:17 +02:00	Full Report Management Report IOC Report	Info Class
1432022	Malicious Yara Sigma Snort AgentTesla, PureLog Stealer AV: 51%	DHL - OVERDUE ACCOUNT NOTICE - 1301669350.exe 2024-04-26 10:05:12 +02:00	Full Report Management Report IOC Report	Info Class
1432021	Malicious Yara Sigma Snort AgentTesla AV: 43%	Payment.exe 2024-04-26 10:05:12 +02:00	Full Report Management Report IOC Report	Info Class
1432020	Clean	http://gorgias.win 2024-04-26 10:03:11 +02:00	Full Report Management Report IOC Report	Info
1432019	Malicious HTMLPhisher AV: 0%	https://usigroups-my.sharepoint.com/:o:/p/js/Es3HdUJZlbVJngCJE-Z7JCYBUTZvd1ZCMQwZhhlQoy_hDw?e=mT2aQm 2024-04-26 09:58:14 +02:00	Full Report Management Report IOC Report	Info Class
1432018	Suspicious	https://gmzyleyab.cc.rs6.net/tn.jsp?f=001L_m-s5obFnTgx_aIp2DKkknLvlMdBttO8zw2TI8e1yHcDXTem--V-Qf4VSCxHJHRSIn4bu6kM8X6Y1k4FUIJH9GHY1zBIvQDAKUcYWJKkjlT6SI3jHKRlHS8x33q3Wuy6cxqt0Ofo99y7zXi9Vxatw==&c=&ch= 2024-04-26 09:57:03 +02:00	Full Report Management Report IOC Report	Class	no Graph
1432017	Malicious AV: 25%	no Icon DL2E29FTg1.elf 2024-04-26 09:40:10 +02:00	Full Report Management Report IOC Report	Info
1432016	Malicious Yara Sigma CMSBrute AV: 50%	PHHOjspjmp.exe 2024-04-26 09:40:06 +02:00	Full Report Management Report IOC Report	Info Class
1432015	Malicious Yara Snort Mars Stealer, Stealc, Vidar AV: 60%	YEnIrzZUUw.exe 2024-04-26 09:40:05 +02:00	Full Report Management Report IOC Report	Info Class
1432014	Clean	python-3.11.4-amd64.exe 2024-04-26 09:36:09 +02:00	Full Report Management Report IOC Report	Info
1432013	Malicious Yara Sigma Snort GuLoader, Remcos AV: 19%	PURCHASEORDERSHEET&SPECIFICATIONSDOC.exe 2024-04-26 09:31:06 +02:00	Full Report Management Report IOC Report	Info Class
1432012	Clean	http://au1-s2s.sensic.net 2024-04-26 09:25:54 +02:00	Full Report Management Report IOC Report	Info
1432011	Suspicious	https://almette-przyjemnown-z-natury.myfreesites.net/?fbclid=IwZXh0bgNhZW0CMTAAAR3IU11-11ga2686BbzoFZQMvp_ZkrvDqJ00Th9i_bV32SBfPR31BdP9fz4_aem_AU4yfynKDakvmaR2AQKxfZCIQdNwU16HlFSTDt3mWeZ3-bfZCrFaAN9gTInyAeL1jKnVVNHBIZmzbA7w68wNlZS2 2024-04-26 09:22:58 +02:00	Full Report Management Report IOC Report	Info Class

Windows: InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files Contains malware configuration(s)

Customization Show ID column

Analyses Overview

Search started