mal.exe

Status: finished

Submission Time: 2021-07-22 08:44:11 +02:00

Malicious

Trojan

Evader

FormBook

Comments

Details

Analysis ID:
452374
API (Web) ID:
819963
Analysis Started:

2021-07-22 08:44:12 +02:00
Analysis Finished:

2021-07-22 08:54:00 +02:00
MD5:
b9bca038d7532ec8a1a9ba0e867061bc
SHA1:
6596ac1216bf03d88482415755c499ed6388cab4
SHA256:
24d91f6c3dcad36d65e45821d520aaabc2f4a87bb1ab512d6807377010d5680e
Technologies:

Engines
IOCs

Joe Sandbox

Engine	Download Report	Detection	Info
		malicious
	Full Report Management Report IOC Report	malicious Score: 100	System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report

malicious

Score: 42/69

Open Full Report

malicious

Score: 9/35

malicious

Score: 29/46

IPs

IP	Country	Detection
52.58.78.16	United States
209.99.64.55	United States

Domains

Name	IP	Detection
www.sarahcarver.com	52.58.78.16
www.mybabytennis.com	209.99.64.55

URLs

Name	Detection
http://www.sarahcarver.com/sm3l/?y0DdGli=yq5bXiAgrpTP0Cl4DWGobHu0GmgEguW+SJypzbO1DFimS8AGhR5rfP7J/muem3koPRQw&ixo0sr=dFQtk
http://www.mybabytennis.com/sm3l/?y0DdGli=KvXnBCtAoO2yHEt5dL0Fxw3RJm1prCWWr0IwHlUk9+xe6WE7Z8sx0d/816zczOTA6oQi&ixo0sr=dFQtk
www.trendtechpros.com/sm3l/
Click to see the 97 hidden entries
http://www.fontbureau.comalice:i
http://www.fontbureau.com/designersP
http://www.carterandcone.com
http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.ttf
http://www.goodfont.co.kr
http://www.carterandcone.comroa
http://www.fontbureau.comepko
https://www.domain.com/controlpanel/domaincentral/3.0/
http://www.tiro.com
http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.otf
http://www.fontbureau.com/designers?
http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.eot
http://www.jiyu-kobo.co.jp/jp/49
http://www.mybabytennis.com/find_a_tutor.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lptoBxA1IN
http://www.founder.com.cn/cn/bThe
http://www.fontbureau.com/designers/?
http://www.jiyu-kobo.co.jp/49
http://www.fontbureau.com/designersG
http://www.galapagosdesign.com/R:
http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff2
http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff
http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.svg#ubuntu-r
http://www.sarahcarver.com
http://www.mybabytennis.com/px.js?ch=2
http://www.urwpp.de
http://www.jiyu-kobo.co.jp/pt-p
http://www.founder.com.cn/cn/D
http://www.urwpp.deZ
http://www.fontbureau.comF
http://i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.eot
http://www.fontbureau.com
http://www.apache.org/licenses/LICENSE-2.0
http://www.carterandcone.comig
http://www.sakkal.com
http://www.fontbureau.comalssys
http://www.jiyu-kobo.co.jp/es-mI:
http://www.jiyu-kobo.co.jp/w:
http://www.fontbureau.com/designersz
http://www.sandoll.co.kr
http://www.fonts.com
http://www.fontbureau.com/designersd
http://i3.cdn-image.com/__media__/pics/12471/logo.png)
http://fontfabrik.com
http://www.galapagosdesign.com/staff/dennis.htm
http://www.fontbureau.comuetow:
http://www.carterandcone.como.p
http://www.typography.netD
http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.woff
http://www.mybabytennis.com/Migraine_Pain_Relief.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lp
http://www.urwpp.deDPlease
http://www.mybabytennis.com/sm3l/?y0DdGli=KvXnBCtAoO2yHEt5dL0Fxw3RJm1prCWWr0IwHlUk9
http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.eot?#iefix
http://www.fontbureau.comde:i
http://www.goodfont.co.krn
http://www.sandoll.co.kr.kr
http://www.fontbureau.comgrito
http://www.galapagosdesign.com/DPlease
http://www.goodfont.co.krT
http://www.mybabytennis.com/All_Inclusive_Vacation_Packages.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz
http://www.jiyu-kobo.co.jp//
http://www.fontbureau.comcomde:i
http://www.zhongyicts.com.cn
http://i3.cdn-image.com/__media__/pics/12471/libgh.png)
http://www.jiyu-kobo.co.jp/sys
http://www.founder.com.cn/cn/cThe
http://www.sajatypeworks.com
http://www.founder.com.cn/cns-m_=
http://i3.cdn-image.com/__media__/pics/12471/arrow.png)
http://www.fontbureau.com/designers
http://i3.cdn-image.com/__media__/pics/12471/kwbg.jpg)
http://www.mybabytennis.com/High_Speed_Internet.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lpt
http://www.mybabytennis.com/px.js?ch=1
http://www.fontbureau.comuei
http://www.carterandcone.coml
http://www.mybabytennis.com/fashion_trends.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lptoBxA1
http://www.mybabytennis.com/display.cfm
http://www.founder.com.cn/cn8
http://www.fontbureau.comld9
http://www.fontbureau.comcomF
http://www.mybabytennis.com/Parental_Control.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lptoBx
http://www.jiyu-kobo.co.jp/v
http://www.fontbureau.com/designers/frere-jones.html
http://www.founder.com.cn/cn0
http://www.urwpp.deeg
http://www.mybabytennis.com/Best_Penny_Stocks.cfm?fp=syKayxFxS7ngKoWOcFEHaS3GPZbkQaeTz%2FfOPjm6lptoB
http://i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.svg#ubuntu-b
http://www.fontbureau.come.com
http://www.carterandcone.comi
http://www.zhongyicts.com.cnf
http://www.fontbureau.com-mI:
http://i3.cdn-image.com/__media__/pics/12471/search-icon.png)
http://www.fontbureau.com/designers~
http://www.tiro.comlic&
http://i3.cdn-image.com/__media__/pics/12471/bodybg.png)
http://www.galapagosdesign.com/
http://www.sandoll.co.krB
http://www.fontbureau.comueu

Dropped files

Name	File Type	Hashes	Detection
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\mal.exe.log	ASCII text, with CRLF line terminators	#

mal.exe

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

mal.exe Options

Comments

Tags

Available tags:

Details

Joe Sandbox

Third Party Analysis Engines

IPs

Domains

URLs

Dropped files

Search started

mal.exe