f5e98f5380e46cbae5d8019cf61db164213b5b63b0c056adae445eea08551485 (SHA256)
11111.exe
Created at 2019-02-22 08:26:00
Notifications (2/2)
Some extracted files may be missing in the report since the maximum number of extracted files was reached during the analysis. You can increase the limit in the configuration settings.
The maximum number of reputation file hash requests (20 per analysis) was exceeded. As a result, the reputation status could not be queried for all file hashes. In order to get the reputation status for all file hashes, please increase the 'Max File Hash Requests' setting in the system configurations.
Severity | Category | Operation | Classification | |
---|---|---|---|---|
5/5
|
File System | Encrypts content of user files | Ransomware | |
|
||||
3/5
|
Persistence | Adds file to open the next time Excel is launched | - | |
|
||||
|
||||
3/5
|
OS | Modifies certificate store | - | |
|
||||
|
||||
|
||||
|
||||
|
||||
3/5
|
Persistence | Adds file to open the next time Word is launched | - | |
|
||||
|
||||
3/5
|
Browser | Reads data related to browser cookies | - | |
|
||||
|
||||
3/5
|
Browser | Reads data related to saved browser credentials | - | |
|
||||
|
||||
2/5
|
Anti Analysis | Tries to detect virtual machine | - | |
|
||||
2/5
|
Browser | Reads data related to browsing history | - | |
|
||||
2/5
|
File System | Known suspicious file | Trojan | |
|
||||
2/5
|
Injection | Writes into the memory of a process running from a created or modified executable | - | |
|
||||
2/5
|
Injection | Modifies control flow of a process running from a created or modified executable | - | |
|
||||
2/5
|
Network | Associated with known malicious/suspicious URLs | - | |
|
||||
1/5
|
Anti Analysis | Resolves APIs dynamically | - | |
|
||||
1/5
|
Process | Creates process with hidden window | - | |
|
||||
|
||||
1/5
|
Process | Reads from memory of another process | - | |
|
||||
1/5
|
Process | Creates a page with write and execute permissions | - | |
|
||||
1/5
|
Process | Creates system object | - | |
|
||||
1/5
|
File System | Modifies application directory | - | |
|
||||
|
||||
|
||||
|
||||
|
||||
1/5
|
File System | Creates an unusually large number of files | - | |
|
||||
1/5
|
Static | Unparsable sections in file | - | |
|
||||
1/5
|
Network | Downloads data | Downloader | |
|
||||
1/5
|
Network | Connects to HTTP server | - | |
|