flash

SecuriteInfo.com.Trojan.GenericKDZ.73120.139.exe

Status: finished
Submission Time: 23.02.2021 11:49:29
Malicious
Trojan
Evader
FormBook

Comments

Tags

Details

  • Analysis ID:
    356587
  • API (Web) ID:
    615157
  • Analysis Started:
    23.02.2021 11:49:30
  • Analysis Finished:
    23.02.2021 11:56:22
  • MD5:
    fac509b5175d3647945bdbf7ac010acc
  • SHA1:
    048a87d3a938217f555da58662da7bfe59971a9e
  • SHA256:
    44283ee3be33ad2077f6c8c18b1699f3d694cb936336523b299646f1a39ea8fc
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

malicious
New

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
100/100

malicious
26/71

malicious
14/47

URLs

Name Detection
www.rizrvd.com/bw82/
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\SecuriteInfo.com.Trojan.GenericKDZ.73120.139.exe.log
ASCII text, with CRLF line terminators
#