flash

Processwindo.DLL

Status: finished
Submission Time: 07.07.2021 14:58:22
Malicious
Trojan
Ursnif

Comments

Tags

  • dll
  • Gozi

Details

  • Analysis ID:
    445292
  • API (Web) ID:
    812880
  • Analysis Started:
    07.07.2021 14:59:18
  • Analysis Finished:
    07.07.2021 15:09:57
  • MD5:
    5522c21a05daf91658951bdf1c0e5271
  • SHA1:
    fed4a9b4069cd2676928441ecf8c844cc7f4a9ee
  • SHA256:
    eb6e2519aa5c31174a1ed6c0193b2d0e49e9ed6ca1ac01ed94b3007b5e2f6993
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
56/100

malicious
20/68

malicious
10/46

URLs

Name Detection
https://bussipod.xyz
https://bussipod.xyz8
http://%s=%s&file://&os=%u.%u_%u_%u_x%uindex.html;