ShrugTwo.exe
Created 5 years ago
VMRay Threat Identifiers (8 rules, 8 matches)
Severity | Category | Operation | Count | Classification | |
---|---|---|---|---|---|
5/5 | Local AV | Malicious content was detected by heuristic scan | 1 | - | |
5/5 | Device | Writes to Master Boot Record (MBR) | 1 | - | |
5/5 | Reputation | Known malicious file | 1 | Trojan | |
1/5 | Network Connection | Performs DNS request | 1 | - | |
1/5 | Process | Creates process with hidden window | 1 | - | |
1/5 | Network Connection | Connects to remote host | 1 | - | |
1/5 | Network Connection | Connects to HTTP server | 1 | - | |
1/5 | Static | Unparsable sections in file | 1 | - |
Screenshots
MITRE ATT&CK™ Matrix - Windows
Sample Information
ID | #394166 |
MD5 | |
SHA1 | |
SHA256 | |
SSDeep | |
ImpHash | |
Filename | ShrugTwo.exe |
File Size | 566.00 kB |
Sample Type | Windows Exe (x86-32) |
Analysis Information
Creation Time: | 2019-12-26 06:12 (UTC+) |
Analysis Duration: | 00:04:00 |
Number of Monitored Processes | 5 |
Execution Successful | |
Reputation Enabled | |
WHOIS Enabled | |
Local AV Enabled | |
YARA Enabled | |
Number of AV Matches | 1 |
Number of YARA Matches | 0 |
Termination Reason | Timeout |