daea4b5ea119786d996f33895996396892fa0bdbb8f9e9fcc184a89d0d0cb85e (SHA256)
Defender.exe
Windows Exe (x86-32)
Created at 2018-02-08 14:58:00
Notifications (1/1)
The operating system was rebooted during the analysis.
Top Threat Indicators (View all 16 threat indicators)
| Category | Operation | Classification |
|---|---|---|
| File System | Encrypts content of user files | Ransomware |
| Browser | Reads data related to browser cookies | - |
| Browser | Reads data related to saved browser credentials | - |
Screenshots
Monitored Processes
Analysis Information
| Creation Time | 2018-02-08 15:58 (UTC+1) |
| Analysis Duration | - |
| Number of Monitored Processes | 3 |
| Execution Successful |
|
| Reputation Enabled |
|
| Termination Reason | Timeout |
| Tags |
Analyzer and Virtual Machine Information
| Analyzer Version | 2.2.0 |
| Analyzer Build Date | 2018-02-08 16:49 (UTC+1) |
| Adobe Acrobat Reader Version | 10.0.0 |
| Microsoft Office | 2010 |
| Microsoft Office Version | 14.0.4762.1000 |
| Internet Explorer Version | 8.0.7601.17514 |
| Chrome Version | 58.0.3029.110 |
| Firefox Version | 25.0 |
| Flash Version | 10.3.183.90 |
| Java Version | 7.0.450.18 |
| VM Name | win7_32_sp1 |
| VM Architecture | x86 32-bit PAE |
| VM OS | Windows 7 |
| VM Kernel Version | 6.1.7601.17514 (684da42a-30cc-450f-81c5-35b4d18944b1) |
Sample Information
| ID | #21039 |
| MD5 Hash Value | 81e9036aed5502446654c8e5a1770935 |
| SHA1 Hash Value | bc5b077127e064e7e6b715f2d37abb80c5bf98cc |
| SHA256 Hash Value | daea4b5ea119786d996f33895996396892fa0bdbb8f9e9fcc184a89d0d0cb85e |
| Filename | Defender.exe |
| File Size | 432.50 KB |
| File Type | Windows Exe (x86-32) |
