flash

STATEMENT Oct-Nov 25-11-2021.exe

Status: finished
Submission Time: 25.11.2021 17:48:30
Malicious
Trojan
Evader
FormBook

Comments

Tags

  • exe
  • Formbook

Details

  • Analysis ID:
    528718
  • API (Web) ID:
    896240
  • Analysis Started:
    25.11.2021 17:48:31
  • Analysis Finished:
    25.11.2021 18:00:17
  • MD5:
    02e738dd13974ab64a472f6aa2f065a8
  • SHA1:
    6134aee9ceffce4d6ed1777739493def77b62533
  • SHA256:
    9acf8fb51cab55a01a74cb84ca9958862b29b8909408e87412700e63a4f578ae
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports

malicious

System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211

malicious
100/100

malicious
7/92

malicious

URLs

Name Detection
www.davanamays.com/unzn/
http://www.autoitscript.com/autoit3/J
http://nsis.sf.net/NSIS_Error
Click to see the 1 hidden entries
http://nsis.sf.net/NSIS_ErrorError

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Temp\nsiE1DF.tmp\ncpszgn.dll
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
#
C:\Users\user\AppData\Local\Temp\a66g5g72a86y4s
data
#