18f0b09725c3f4cea286aae7fceaec0cd6e49f90c9aa72dcc9c6d748bfe716cd (SHA256)
October_Invoiceb91a6edbc0ialmb3ce5ebc15abba7fe01fda93.accde
Created at 2019-01-21 16:18:00
Severity | Category | Operation | Classification | |
---|---|---|---|---|
5/5
|
File System | Modifies operating system directory | - | |
|
||||
|
||||
|
||||
|
||||
|
||||
5/5
|
Injection | Writes into the memory of another running process | - | |
|
||||
|
||||
5/5
|
Injection | Modifies control flow of another process | - | |
|
||||
|
||||
4/5
|
Process | Creates process | - | |
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
4/5
|
Process | Reads from memory of another process | - | |
|
||||
|
||||
4/5
|
Device | Monitors keyboard input | Keylogger | |
|
||||
4/5
|
Network | Associated with known malicious/suspicious URLs | - | |
|
||||
|
||||
4/5
|
Network | Downloads data | Downloader | |
|
||||
4/5
|
Persistence | Installs system service | - | |
|
||||
3/5
|
Anti Analysis | Delays execution | - | |
|
||||
3/5
|
Network | Performs DNS request | - | |
|
||||
|
||||
|
||||
|
||||
3/5
|
Network | Connects to remote host | - | |
|
||||
3/5
|
PE | Executes dropped PE file | - | |
|
||||
2/5
|
Anti Analysis | Tries to detect debugger | - | |
|
||||
2/5
|
Network | Connects to HTTP server | - | |
|
||||
2/5
|
PE | Drops PE file | Dropper | |
|
||||
|
||||
1/5
|
Process | Creates system object | - | |
|
||||
|
||||
|
||||
1/5
|
Static | Unparsable sections in file | - | |
|