dokumentacja_92622.vbe
Created at 2019-04-30T10:37:00
VMRay Threat Indicators (9 rules, 10 matches)
Severity | Category | Operation | Count | Classification | |
---|---|---|---|---|---|
4/5
|
Process | Creates an unusually large number of processes | 1 | - | |
|
|||||
4/5
|
Process | Executes encoded PowerShell script | 1 | - | |
|
|||||
3/5
|
Network | Reads network adapter information | 1 | - | |
|
|||||
2/5
|
Network | Performs DNS request | 1 | - | |
|
|||||
2/5
|
Network | Connects to HTTP server | 1 | - | |
|
|||||
2/5
|
PE | Drops PE file | 1 | Dropper | |
|
|||||
1/5
|
Process | Creates system object | 2 | - | |
|
|||||
|
|||||
1/5
|
Process | Enumerates running processes | 1 | - | |
|
|||||
1/5
|
Network | Connects to remote host | 1 | - | |
|
Screenshots
Monitored Processes
Sample Information
Analysis Information
Creation Time | 2019-04-30 12:37 (UTC+2) |
Analysis Duration | 00:16:29 |
Number of Monitored Processes | 277 |
Execution Successful | |
Reputation Enabled | |
WHOIS Enabled | |
Local AV Enabled | |
YARA Enabled | |
Number of AV Matches | 0 |
Number of YARA Matches | 0 |
Termination Reason | Timeout |
Tags |