VTI SCORE: 100/100
Dynamic Analysis Report |
Classification: |
Ransomware
Wiper
Dropper
|
Threat Names: |
Win32.Virlock.Gen.1
Gen:Trojan.Heur.FU.IqX@aq8O8nni
Gen:Trojan.Heur.TP.IqX@bq8O8nni
...
|
Lef9NVBNY3Gqm5dX.exe
Windows Exe (x86-32)
Created at 2020-03-31T14:56:00
Remarks (2/3)
(0x02000008): One or more processes crashed during the analysis. Analysis results may be incomplete.
(0x0200000E): The overall sleep time of all monitored processes was truncated from "4 hours, 21 minutes, 12 seconds" to "7 minutes, 50 seconds" to reveal dormant functionality.
Indicators
File (876)
»
Registry (6)
»
Mutex (9)
»
Domain (2)
»
Domain | Sources | Severity |
---|---|---|
google.com | PCAP, Function Log |
Unknown
|
www.google.com | Embedded in File |
Not Queried
|
URL (2)
»
URL | Operations | Category | Severity |
---|---|---|---|
http://google.com/ | GET | Contacted |
Unknown
|
http://www.google.com/ | GET | Extracted |
Unknown
|
IP (1)
»
IP | Protocols | Sources |
---|---|---|
172.217.23.142 | HTTP, DNS, TCP | PCAP, Function Log |