VTI SCORE: 100/100
Dynamic Analysis Report |
Classification: |
Dropper
|
Threat Names: |
Gen:Variant.MSILPerseus.194329
Gen:Variant.MSILPerseus.195992
Gen:Variant.Razy.548085
|
ekati6482.exe
Windows Exe (x86-32)
Created at 2020-02-27T09:41:00
Indicators
File (23)
»
Registry (63)
»
Mutex (1)
»
Mutex Name | Operations |
---|---|
Local\SM0:4524:120:WilError_01 | Access |
Domain (3)
»
URL (15)
»
IP (2)
»
IP | Protocols | Sources |
---|---|---|
192.168.0.1 | UDP, DNS | PCAP, Function Log |
217.194.236.100 | HTTPS, TCP, HTTP, DNS | PCAP, Function Log |