flash

moni $@.exe

Status: finished
Submission Time: 03.08.2021 16:36:33
Malicious
Trojan
Evader
FormBook

Comments

Tags

  • exe
  • null

Details

  • Analysis ID:
    458678
  • API (Web) ID:
    826262
  • Analysis Started:
    03.08.2021 16:36:35
  • Analysis Finished:
    03.08.2021 16:43:47
  • MD5:
    1e46a61b2d491a15952bd579210ecb8f
  • SHA1:
    5bb236d5c49991298040dd88b4b83c4cb21e148a
  • SHA256:
    b07a33b6e6d8007b04f1f4a78cd8be773506bbf6b60ed0227665188d57e82a15
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

malicious

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
100/100

malicious
27/69

malicious
16/46

malicious

malicious

URLs

Name Detection
www.panyu-qqbaby.com/weni/
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\moni $@.exe.log
ASCII text, with CRLF line terminators
#