4deff7d8...399c | VMRay Analyzer Report
Try VMRay Analyzer
VTI SCORE: 100/100
Target: win8.1_64 | exe
Classification: Riskware, Downloader, Wiper, Ransomware

4deff7d8434583ea8e5c3ef9b4c64674dfb165b1720ddf63b5abdd8ed6a7399c (SHA256)

sous.exe

Windows Exe (x86-64)

Created at 2018-04-13 00:34:00

Notifications (2/2)

Due to a reputation service error, no query could be made to determine the reputation status of any contacted URL.

The operating system was rebooted during the analysis.

Top Threat Indicators (View all 28 threat indicators)

Screenshots

Monitored Processes

Analysis Information

Creation Time 2018-04-13 02:34 (UTC+2)
Analysis Duration 00:02:46
Number of Monitored Processes 37
Execution Successful True
Reputation Enabled True
Termination Reason Timeout
Tags

Analyzer and Virtual Machine Information

Analyzer Version 2.3.0
Analyzer Build Date 2018-04-12 16:32 (UTC+2)
Adobe Acrobat Reader Version 11.0.00
Microsoft Office 2013
Microsoft Office Version 15.0.4420.1017
Microsoft Project Version 15.0.4569.1504
Microsoft Visio Version 15.0.4569.1504
Internet Explorer Version 11.0.9600.17031
Chrome Version 58.0.3029.110
Firefox Version 25.0
Flash Version 11.2.202.228
Java Version 7.0.510.13
VM Name win8.1_64
VM Architecture x86 64-bit
VM OS Windows 8.1
VM Kernel Version 6.3.9600.17031 (6066913d-fbad-4ef6-b754-e136c12beca3)

Sample Information

ID #42002
MD5 Hash Value f6d01e72a58a8bdf14f9a103250f779e
SHA1 Hash Value 3b97bac22a04282ebbaef60beb168a41e4449239
SHA256 Hash Value 4deff7d8434583ea8e5c3ef9b4c64674dfb165b1720ddf63b5abdd8ed6a7399c
Filename sous.exe
File Size 997.00 KB
File Type Windows Exe (x86-64)
Function Logfile
Exit-Icon

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".


    
Before

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".


    
After

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".


    
Screenshot
Expand-Icon
Exit-Icon
icon_left
icon_left
image