31.0.0 Emerald
IR
394429
CloudBasic
15:10:09
21/04/2021
samtidshistoriker.exe
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
780254149cfe37ce295a82588be31204
c28ac373e62a87ae40ad378458d68adc0255558d
74c9a0f54acec0d6579e9a43c75571f05eeb7393f43c13a5e790bfbb262dcb2e
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
92
0
100
5
0
5
false
C2 URLs / IPs found in malware configuration
Detected RDTSC dummy instruction sequence (likely for instruction hammering)
Found potential dummy code loops (likely to delay analysis)
Machine Learning detection for sample
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
Tries to detect virtualization through RDTSC time measurements
Yara detected VB6 Downloader Generic
Found malware configuration
Multi AV Scanner detection for submitted file
Yara detected GuLoader