72ebc223bef1bf4cabad9c7eb6e520f0d93554f2807d4c8875be24dc3ab129a4 (SHA256)
FRS.exe
Windows Exe (x86-32)
Created at 2018-03-11 10:08:00
Top Threat Indicators (View all 11 threat indicators)
| Category | Operation | Classification |
|---|---|---|
| File System | Renames user files | Ransomware |
| File System | Associated with malicious files | Trojan |
| Process | Creates an unusally large number of processes | - |
Screenshots
Monitored Processes
Analysis Information
| Creation Time | 2018-03-11 11:08 (UTC+1) |
| Analysis Duration | 00:02:31 |
| Number of Monitored Processes | 161 |
| Execution Successful |
|
| Reputation Enabled |
|
| Termination Reason | Timeout |
| Tags |
Analyzer and Virtual Machine Information
| Analyzer Version | 2.3.0 |
| Analyzer Build Date | 2018-02-28 14:48 (UTC+1) |
| Adobe Acrobat Reader Version | 11.0.00 |
| Microsoft Office | 2013 |
| Microsoft Office Version | 15.0.4420.1017 |
| Microsoft Project Version | 15.0.4569.1504 |
| Microsoft Visio Version | 15.0.4569.1504 |
| Internet Explorer Version | 11.0.9600.17031 |
| Chrome Version | 58.0.3029.110 |
| Firefox Version | 25.0 |
| Flash Version | 11.2.202.228 |
| Java Version | 7.0.510.13 |
| VM Name | win8.1_64 |
| VM Architecture | x86 64-bit |
| VM OS | Windows 8.1 |
| VM Kernel Version | 6.3.9600.17031 (6066913d-fbad-4ef6-b754-e136c12beca3) |
Sample Information
| ID | #30661 |
| MD5 Hash Value | af6d91121887f5bb0a85a06b1ded0db7 |
| SHA1 Hash Value | 3dc746ae351adbaa192400a58c492c83dd7f4a10 |
| SHA256 Hash Value | 72ebc223bef1bf4cabad9c7eb6e520f0d93554f2807d4c8875be24dc3ab129a4 |
| Filename | FRS.exe |
| File Size | 270.00 KB |
| File Type | Windows Exe (x86-32) |
