34.0.0 Boulder Opal
IR
528679
CloudBasic
16:46:22
25/11/2021
BBVA Liquidaci#U00f3n por Factorizaci#U00f3n de Cr#U00e9ditos.exe
default.jbs
Windows 10 64 bit 20H2 Native <b>physical Machine for testing VM-aware malware</b> (Office 2019, IE 11, Chrome 93, Firefox 91, Adobe Reader DC 21, Java 8 Update 301
WINDOWS
d879bb7572225ebf68f74406710f6ea0
c34286e6e9d1502a8e3aff050c35781aee371bbc
b29f69052169c50b19f3f6cc8d724a228a7b378bb8e0a23c6f5b25d01c5b4e3c
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
84
0
100
5
0
5
false
C:\Users\user\AppData\Local\Temp\~DFDCBA8CD39083ECED.TMP
false
19809EDD1FF00A1D7C105BC58A97CD02
26FB6D339CF2A7474DE6F785166163FA9B2ADBB1
4745D04A4BB99D70866D722394D9E71F3FAE597AA84E229A1E3B40F31521594C
142.250.185.206
drive.google.com
false
142.250.185.206
Hides threads from debuggers
Found malware configuration
Writes to foreign memory regions
Tries to detect Any.run
Multi AV Scanner detection for submitted file
C2 URLs / IPs found in malware configuration
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
Yara detected GuLoader