CryptOne,QBot | d2c969098c9a | VMRay Platform Report

Classifications

Injector Banking Trojan

Threat Names

Mal/Generic-S CryptOne QBot Mal/HTMLGen-A

Dynamic Analysis Report

Created on 2022-05-16T17:12:09+00:00

d2c969098c9a689728a5f5ac942fa4f75c88738d0367d471276ac4c470504ded.dll

Windows DLL (x86-32)

Remarks (2/2)

DLL Loader Required (0x02000009): DLL files normally need to be submitted with an appropriate loader. Analysis result may be incomplete if an appropriate loader was not submitted.

Anti-Sleep Triggered (0x0200000E): The overall sleep time of all monitored processes was truncated from "52 days, 2 hours, 2 minutes, 58 seconds" to "6 hours, 14 minutes, 26 seconds" to reveal dormant functionality.

Function Logfile

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting \"security.fileuri.strict_origin_policy\".

Before

After

WHOIS Domain Information

Screenshot

Domain Name
WHOIS Response