2c5729e17b64cd4e905ccfeabbc913ed945e17625c35ec1d6932194aae83d7c6 (SHA256)
DOC_443353149786_10082018.pdf
Created at 2018-08-10 12:36:00
Notifications (2/2)
The overall sleep time of all monitored processes was truncated from "20 minutes, 15 seconds" to "2 minutes" to reveal dormant functionality.
The operating system was rebooted during the analysis.
Severity | Category | Operation | Classification | |
---|---|---|---|---|
4/5
|
Process | Creates process | - | |
|
||||
|
||||
4/5
|
File System | Known malicious file | Trojan | |
|
||||
4/5
|
Network | Downloads data | Downloader | |
|
||||
|
||||
3/5
|
Network | Performs DNS request | - | |
|
||||
|
||||
3/5
|
Persistence | Installs system startup script or application | - | |
|
||||
3/5
|
Anti Analysis | Delays execution | - | |
|
||||
3/5
|
PE | Executes dropped PE file | - | |
|
||||
2/5
|
Network | Connects to HTTP server | - | |
|
||||
|
||||
2/5
|
PE | Drops PE file | Dropper | |
|
||||
1/5
|
Process | Creates system object | - | |
|
||||
1/5
|
Static | Contains PDF JavaScript | - | |
|
||||
1/5
|
Static | Contains embedded files | - | |
|