Automated Malware Analysis - Joe Sandbox Cloud Basic

Detection	Sample Info	Download Report	Classification & Info	Graph
Clean	https://wheatley-group.wax-live.com/S2C/SignIn.aspx?SCT=96d136bd-0bcd-421b-993b-76c29d8f7899 2023-11-06 10:22:19 +01:00	Full Report Management Report IOC Report	Info
Malicious AV: 11%	U00b7pdf.vbs 2023-11-06 10:22:09 +01:00	Full Report Management Report IOC Report	No classification & info
Clean	Nabídka_202311_05432CMUCZ·pdf.vbs 2023-11-06 10:22:09 +01:00	Full Report Management Report IOC Report	No classification & info
Malicious AV: 18%	NEW_ORDER-1256.xla.xlsx 2023-11-06 10:22:06 +01:00	Full Report Management Report IOC Report	Info
Suspicious	WEEKLY_GRAPHS_ETC.doc 2023-11-06 10:20:09 +01:00	Full Report Management Report IOC Report	No classification & info
Clean	https://public-eur.mkt.dynamics.com/api/orgs/7ded44b9-d5cc-4c23-8205-e0a0b430c20e/r/tlqIs_tf6E-VPFaXi8-W2SsAAAA?target=%7B%22TargetUrl%22%3A%22https%253A%252F%252Fwww.forskningsradet.no%252Fnyheter%252F2023%252Ftre-rad-om-samfunnsoppdraget-for-berekraftig-for%252F%2523%253E%255D%22%2C%22RedirectOptions%22%3A%7B%221%22%3Anull%2C%222%22%3A%7B%22utm_medium%22%3A%22email%22%2C%22utm_term%22%3A%22N%2FA%22%2C%22utm_source%22%3A%22Dynamics%22%2C%22utm_campaign%22%3A%22NFR_NB_Uke_44_berekraftig-for%22%7D%7D%7D&digest=IDVQL9C%2FnZ5z%2BxztBuFHyFRqfQ9xF1I8D6ZA%2ByCtfBc%3D&secretVersion=7c13c22c20aa46a1b2fc8b71fde4d19a 2023-11-06 10:17:27 +01:00	Full Report Management Report IOC Report	Info
Malicious Yara Snake Keylogger AV: 69%	3mWsBbivsN.exe 2023-11-06 10:16:12 +01:00	Full Report Management Report IOC Report	Info Class
Malicious Yara Snake Keylogger AV: 67%	vQaYtmnDda.exe 2023-11-06 10:16:12 +01:00	Full Report Management Report IOC Report	Info Class
Malicious Yara Snake Keylogger AV: 61%	110223.exe 2023-11-06 10:16:08 +01:00	Full Report Management Report IOC Report	Info Class
Malicious Yara Snake Keylogger AV: 71%	K9sK7SuHT0.exe 2023-11-06 10:16:08 +01:00	Full Report Management Report IOC Report	Info Class
Malicious AV: None	https://fgrammarly.com.discovertrade.shop/onesystems.com?fnewsystem.com=rp@emfa.pt&&rwavsbazbunfpepqqejbeysicgysmkokivwbjcykzlotbmxziw=9345204729840813482102576&?rilubvhgabkfgkrczkcittxme=93797579764026980334 2023-11-06 10:14:21 +01:00	Full Report Management Report IOC Report	Info
Malicious Yara Snort FormBook, GuLoader AV: 54%	ins.exe 2023-11-06 10:12:46 +01:00	Full Report Management Report IOC Report	Info Class
Malicious AV: 19%	3yypk0NA7b.exe 2023-11-06 10:12:10 +01:00	Full Report Management Report IOC Report	Info
Malicious AV: 21%	1budjNuX0E.exe 2023-11-06 10:12:05 +01:00	Full Report Management Report IOC Report	Info
Suspicious	setup.exe 2023-11-06 10:11:35 +01:00	Full Report Management Report IOC Report	Info	no Graph
Malicious Yara Snort RedLine AV: 44%	file.exe 2023-11-06 10:08:09 +01:00	Full Report Management Report IOC Report	Info Class
Malicious Yara Snort AgentTesla AV: 32%	ENQ_#_1220014088.exe 2023-11-06 10:06:08 +01:00	Full Report Management Report IOC Report	Info Class
Malicious Yara AgentTesla AV: 36%	DHL_DOC_74653898.pdf.exe 2023-11-06 10:00:10 +01:00	Full Report Management Report IOC Report	Info Class
Clean	https://www.oohpanel.com/REDIRECT/v?url=UTsBEWEJtPjWMEzioUvhXjJNYqTlkCzFegyUTsqTrEiPphoQHO#UTsBEWEJtPjWMEzioUvhXjJNYqTlkCzFegyUTsqTrEiPphoQHOBOOTbC53aWVsZW5nYUBtaXRzdWJpc2hpLW1vdG9ycy1ldXJvLmNvbQ== 2023-11-06 09:59:30 +01:00	Full Report Management Report IOC Report	Info
Clean	https://www.biomegalabo.com 2023-11-06 09:58:15 +01:00	Full Report Management Report IOC Report	Info

Windows:

InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files Contains malware configuration(s)

Analyses Overview

Search started

Yara Super Rule creation started