75ca5c2caf5216140f8e3e34160bdc64ce59d75fce1feeaa809ec18f01427783 (SHA256)
volumesound.exe
Created at 2018-11-06 10:28:00
Severity | Category | Operation | Classification | |
---|---|---|---|---|
5/5
|
YARA | YARA match | - | |
|
||||
4/5
|
Injection | Writes into the memory of another running process | - | |
|
||||
3/5
|
Anti Analysis | Tries to detect application sandbox | - | |
|
||||
2/5
|
Anti Analysis | Tries to detect virtual machine | - | |
|
||||
2/5
|
Anti Analysis | Tries to detect debugger | - | |
|
||||
2/5
|
File System | Known suspicious file | - | |
|
||||
1/5
|
Process | Creates system object | - | |
|
||||
|
||||
1/5
|
Information Stealing | Reads system data | Spyware | |
|
||||
1/5
|
Process | Creates process with hidden window | - | |
|
||||
1/5
|
Process | Reads from memory of another process | - | |
|
||||
1/5
|
Anti Analysis | Resolves APIs dynamically | - | |
|