flash

SecuriteInfo.com.Trojan.Packed.140.1305.exe

Status: finished
Submission Time: 01.08.2020 21:30:25
Malicious
Trojan
Evader
Trickbot

Comments

Tags

Details

  • Analysis ID:
    255564
  • API (Web) ID:
    406666
  • Analysis Started:
    01.08.2020 21:57:58
  • Analysis Finished:
    01.08.2020 22:05:28
  • MD5:
    b25c87b95aaf9d4dfd3137e9411a7ca7
  • SHA1:
    f9de5a9307d8e7db8c36b207a24c6db0c4e7669e
  • SHA256:
    fd0e889584352c3528a0170c7e2dbd8ef904befb9958bb4eeb097ece7f75b825
  • Technologies:
Full Report Engine Info Verdict Score Reports

malicious

System: w10x64 Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
76/100

IPs

IP Country Detection
91.235.129.20
Ukraine
185.99.2.66
Bosnia and Herzegowina
185.99.2.65
Bosnia and Herzegowina
Click to see the 3 hidden entries
194.5.250.121
Romania
134.119.191.21
Germany
134.119.191.11
Germany

URLs

Name Detection
http://crl.comodoZ
https://sectigo.com/CPS0
https://134.119.191.21/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/
Click to see the 15 hidden entries
https://134.119.191.11:443/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/:
https://134.119.191.11/AACertif
https://134.119.191.11/odoca.co
https://134.119.191.21/
https://134.119.191.11/
https://185.99.2.65/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk//8
https://134.119.191.21/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/E
https://185.99.2.65:443/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/
https://134.119.191.21/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/8
https://134.119.191.11/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/
https://134.119.191.21:443/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/
http://crt.comodoca.
https://185.99.2.65/U4
https://134.119.191.11/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/#
https://91.235.129.20/ono57/045012_W10017134.4BD5EEAB0EFF3C5DB37F5B56FBB71F54/5/spk/

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Temp\logBFCF.tmp
Non-ISO extended-ASCII text, with CRLF line terminators
#