89f35f20af62201010e3218a22c50ed6994c79fb6f9f2210fd55203e6e6b01a1 (SHA256)
svchost.jpg.exe
Created at 2019-01-04 10:33:00
Notifications (1/1)
Every worker has a preconfigured RAM disk size for temporary changes for all VMs and analyses. During this analysis, the amount of free RAM disk space dropped to a value below the minimum configured level, and as an result, the analysis was terminated prematurely.
Severity | Category | Operation | Classification | |
---|---|---|---|---|
5/5
|
File System | Encrypts content of user files | Ransomware | |
|
||||
4/5
|
Masquerade | Uses a double file extension | Riskware | |
|
||||
3/5
|
Network | Connects to TOR hidden service | - | |
|
||||
2/5
|
Network | Attempts to connect to unavailable TCP servers | - | |
|
||||
1/5
|
Anti Analysis | Resolves APIs dynamically | - | |
|
||||
1/5
|
Process | Creates system object | - | |
|
||||
1/5
|
Process | Creates process with hidden window | - | |
|
||||
1/5
|
File System | Modifies application directory | - | |
|
||||
|
||||
1/5
|
Network | Downloads data | Downloader | |
|
||||
1/5
|
Network | Connects to HTTP server | - | |
|