bd5d3ebe...95b3 | Files
Logo
Try VMRay Analyzer
VTI SCORE: 100/100
Dynamic Analysis Report
Classification: Wiper, Trojan

dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe

Windows Exe (x86-32)

Created at 2019-05-15T23:24:00

...

Remarks

(0x200001b): The maximum number of file reputation requests per analysis (20) was exceeded.

Filters:
Filename Category Type Severity Actions
C:\Users\FD1HVy\Desktop\dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe Sample File Binary
Malicious
...
»
Mime Type application/vnd.microsoft.portable-executable
File Size 165.50 KB
MD5 119fc3356fd91b84ce3195f4914ce53e Copy to Clipboard
SHA1 e71024b789e25f79b50b9d79409ba0c85597cf35 Copy to Clipboard
SHA256 bd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3 Copy to Clipboard
SSDeep 3072:Xi+77RrDGdRTSHL/FnVxi7AnWpL5geHRiZ4qjKbknx/:XioIqFVxsqWpmeHouk Copy to Clipboard
ImpHash 6ab8173f30757d6c461671e5705da932 Copy to Clipboard
Parser Error Remark Static analyzer was unable to completely parse the analyzed file
File Reputation Information
»
Severity
Blacklisted
First Seen 2018-11-03 13:50 (UTC+1)
Last Seen 2019-03-30 07:49 (UTC+1)
Names Win32.Trojan.Cryfile
Families Cryfile
Classification Trojan
PE Information
»
Image Base 0x400000
Entry Point 0x46d600
Size Of Code 0x29000
Size Of Initialized Data 0x1000
Size Of Uninitialized Data 0x44000
File Type FileType.executable
Subsystem Subsystem.windows_gui
Machine Type MachineType.i386
Compile Timestamp 1992-06-19 22:22:17+00:00
Sections (3)
»
Name Virtual Address Virtual Size Raw Data Size Raw Data Offset Flags Entropy
UPX0 0x401000 0x44000 0x0 0x400 IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE 0.0
UPX1 0x445000 0x29000 0x28800 0x400 IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE 7.92
.rsrc 0x46e000 0x1000 0xa00 0x28c00 IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE 3.21
Imports (8)
»
advapi32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
RegCloseKey 0x0 0x46e82c 0x6e82c 0x2942c 0x0
comctl32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
ImageList_Add 0x0 0x46e834 0x6e834 0x29434 0x0
gdi32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
SaveDC 0x0 0x46e83c 0x6e83c 0x2943c 0x0
KERNEL32.DLL (4)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
LoadLibraryA 0x0 0x46e844 0x6e844 0x29444 0x0
ExitProcess 0x0 0x46e848 0x6e848 0x29448 0x0
GetProcAddress 0x0 0x46e84c 0x6e84c 0x2944c 0x0
VirtualProtect 0x0 0x46e850 0x6e850 0x29450 0x0
oleaut32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
VariantCopy 0x0 0x46e858 0x6e858 0x29458 0x0
shell32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
SHGetSpecialFolderPathA 0x0 0x46e860 0x6e860 0x29460 0x0
user32.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
GetDC 0x0 0x46e868 0x6e868 0x29468 0x0
version.dll (1)
»
API Name Ordinal IAT Address Thunk RVA Thunk Offset Hint
VerQueryValueA 0x0 0x46e870 0x6e870 0x29470 0x0
Memory Dumps (4)
»
Name Process ID Start VA End VA Dump Reason PE Rebuilds Bitness Entry Points AV YARA Actions
dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe 1 0x00400000 0x0046EFFF Content Changed - 32-bit 0x0046D600 False False
...
dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe 1 0x00400000 0x0046EFFF Relevant Image - 32-bit - False False
...
buffer 1 0x00680000 0x00680FFF First Execution - 32-bit 0x00680FEF False False
...
dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe 1 0x00400000 0x0046EFFF Process Termination - 32-bit - False False
...
Local AV Matches (1)
»
Threat Name Severity
Trojan.GenericKD.31335298
Malicious
C:\Users\FD1HVy\Desktop\6Ap4.png.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 38.27 KB
MD5 2aaf15e9d4a1070d046298f899a57d24 Copy to Clipboard
SHA1 2a52b47a6a535af27db7a408b006e281d9dd7c1f Copy to Clipboard
SHA256 f247aeb0d0a4780c40c9b3a335524497f70c572239c5a0f1209d8d1f5ef266a9 Copy to Clipboard
SSDeep 768:nooBiB7/5vG2eeb8u2CGO8Bv9HWJoZJ+1IcvIfsR6ODo3bwRLF+2jT4o1:nowiB750OJ25O8BvMyZJ+1IPQDoQWw Copy to Clipboard
C:\Users\FD1HVy\Desktop\73OqHhCstnZXqrw.m4a.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 53.19 KB
MD5 11df7900d064fa8b20e5a4e0147b9aef Copy to Clipboard
SHA1 06a3612df8fefeb8a74c115f8f611ecd4f71cf11 Copy to Clipboard
SHA256 12808a24dcde102554a8fab8013f9d36cb17e60543cf23bd79cf6724fb638ff5 Copy to Clipboard
SSDeep 768:xGwaD/WNRbvHqsCwZjsqXBAzF8Y7rfVHyaOMi3gokVZ8wu1aOmSkaJ1/Jim8S:xGwmWHb//3442X7r1CX3TkI/44 Copy to Clipboard
C:\Users\FD1HVy\Desktop\dnasmalwareprovider!dailyransomwaresbd5d3ebe6150f53c1535e1667a18bbd4831751a414e7518dc8e1d15a19db95b3.exe.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 165.50 KB
MD5 ef36f731b3c3c13eb127cfcdd81e7302 Copy to Clipboard
SHA1 aadab2d976e932b1ef113aa597bfda01fead1889 Copy to Clipboard
SHA256 5b621ab987325b4f62d71948c5d7310d44a2224344f7761c2db122c9aae28c8b Copy to Clipboard
SSDeep 3072:Fv6/48C+/vJ8xZKpAsWDIC6eNFmlPbYLkwCRzO2FBrHPGZjW:EpZJ8xxECh3mlMVIC4ZuFW Copy to Clipboard
C:\Users\FD1HVy\Desktop\Fcr1f3Gzw_W.avi.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 26.96 KB
MD5 2e1a2d931e7d3353904819bf04f5c97b Copy to Clipboard
SHA1 84bbf9d62d7d284d512ddc680b0db28aa0fd0af5 Copy to Clipboard
SHA256 764a28d5ae56ece94993cbec0109b4ad2c6800ef5d29e2f79060fae9c29af3d5 Copy to Clipboard
SSDeep 768:fqiBdkR355wD7zq/s4mQuoCFLx+kTofMSzpD74Th:fP4R38zYsbFEHksh7m Copy to Clipboard
C:\Users\FD1HVy\Desktop\FQqQPCoYEB.jpg.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 29.44 KB
MD5 3f562f5ab3ba478fc7c817ba2dac7257 Copy to Clipboard
SHA1 a39dc941147b6ffaf995db227991f9bd0f357e76 Copy to Clipboard
SHA256 0e37fc95f67c5b18c7d8125c2bc6a12f80716b5962724a78888fe346b1b9c08b Copy to Clipboard
SSDeep 768:CHRcsvAZlXAuFEdNNM9je1qcA1zVuYOqvUN2/uUIjK:CxYlhFG115QzVuYOqvU/TG Copy to Clipboard
C:\Users\FD1HVy\Desktop\GMOyXDXwFM8W7-LhS.swf.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 37.25 KB
MD5 f65eb2844b08407898f9b5dc54e8515c Copy to Clipboard
SHA1 50f6f949060d2509c7dc42e290ade676fd499759 Copy to Clipboard
SHA256 3d718e56028b971196d333276d821775a663115c3833f97bd6a22f554041e3e6 Copy to Clipboard
SSDeep 768:GzZwHSnZkwbccCXnc7pA2Lb/Vdk7rgZWa1kL8mmgE:GuynZk0pCXnc7pB/VagZH128B Copy to Clipboard
C:\Users\FD1HVy\Desktop\gv-rKvbphTHL.odp.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 91.07 KB
MD5 83109e375066342a9feff08d35daa8a4 Copy to Clipboard
SHA1 cf411bc81606e940384fccfeac8379ac8e8aa640 Copy to Clipboard
SHA256 851b200e963de1e12dc52290059600a219f8ef95114cb4d95ea3e5f36dcb9511 Copy to Clipboard
SSDeep 1536:tGx4Hj3K6RAUz2EsE/ZNG47JY19u16LXDy4ZP6F6TjKogMRPAcZ9UT9b0EUC4Y4d:pj3KCAUz2EHhNGcE9u16DDTl/TORxbbW Copy to Clipboard
C:\Users\FD1HVy\Desktop\IHFgpxkCmC_zEG.wav.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 1.18 KB
MD5 163729ea7a2eee340cdbecd28ac8a4a6 Copy to Clipboard
SHA1 19acc475c3a0b223a8afb9ac6dc5ac027b377724 Copy to Clipboard
SHA256 1ac62a4ccea75b9013e9324359da253c57abd01b9c07fbb85cc7aba40457340f Copy to Clipboard
SSDeep 24:oqqAY+8N35xKqY/AXc17Sy3pZbNwpUxCXpj+uR39Y8lLcpSj7:L8RGecgypwpJXpj+2Y8v7 Copy to Clipboard
C:\Users\FD1HVy\Desktop\J5-kjHCPXByZQnhDJn.mp3.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 59.76 KB
MD5 de5d6c88265c0528aae5ecde32c853ce Copy to Clipboard
SHA1 bd736e7c38147e8a6d800b36a0377a191b6a91a4 Copy to Clipboard
SHA256 b271968773df082d0899af7a6f5f8f0bdc2840b71fc4d699b9c6fbc7b1d47280 Copy to Clipboard
SSDeep 1536:5EsaMV+wX26s0gf7/ABRx7U9S4WC2NZmgyjoBKwg:5EsaI+wXRo74BQ9S4WC2NDhNg Copy to Clipboard
C:\Users\FD1HVy\Desktop\kbF_2PW7TjoQ4IMqkI.bmp.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 87.34 KB
MD5 501a366a6e556ffb3b22419538cf85bf Copy to Clipboard
SHA1 0736d7bea9ba7c74aff6b67ff7e2ae3dc4039f59 Copy to Clipboard
SHA256 ac514e1bdddb2b2279627a320700fa2281bb578722ebe596cea01873c09571ae Copy to Clipboard
SSDeep 1536:mOCSLjURwdEsR4NASMbmmXSYiOxqVMO5QL1Sthksolst5kGqCzFlDL8KiytsAmAT:mSvUR3sRqihXY5yO5eSttQ2/z5dIYm0 Copy to Clipboard
C:\Users\FD1HVy\Desktop\kvxI68o_1uIf1.avi.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 90.79 KB
MD5 ddf8d75403fc50a62df5dd64b8dd1bd4 Copy to Clipboard
SHA1 c139c77b84080663bb2832b73efd2a056b3525c3 Copy to Clipboard
SHA256 5347c7cadde2967945ec4f2e6d2cffe137b6664d34de566c17e7f38adf46839a Copy to Clipboard
SSDeep 1536:UEQEeeiCnhpWwjMSu+BBNlAFkyBZEBL4ph3nIMSKkqASIpNxTIbgz9YccuoDH:AEeeiCTWYMStNlAFLTEGXI5npkM9Y7B Copy to Clipboard
C:\Users\FD1HVy\Desktop\nbWphIhGB6Uy0.flv.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 53.30 KB
MD5 c93b478560c7cbfd7937cf1c2840d9c4 Copy to Clipboard
SHA1 425315d2983e2a2e3f39f41bc68573a00365476d Copy to Clipboard
SHA256 1e315cbc42da38b8cec45b8329abe37a2ca6b3edc2167ec153189b771585b337 Copy to Clipboard
SSDeep 768:uJpMqQ69qViartO0i/GpvAeRmB4Xy0zBki53Q2OVva9Fj8f7b1B2g5lpuqPu0a:ipBoMXi9RmByZ6i53GVIjg9PYqo Copy to Clipboard
C:\Users\FD1HVy\Desktop\oFb2U6s9m6U6gOPb.mkv.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 47.70 KB
MD5 75ece8fc08b4b1ff0e72ca6f10c7dd44 Copy to Clipboard
SHA1 1f297f9cea80e16c814d9ca3f9f9cc6c96886ee2 Copy to Clipboard
SHA256 1d42324a8351e175a594a47488f31dc4a4c70e4dcda85cbb425e780b501bcaf0 Copy to Clipboard
SSDeep 768:YCAMaYC/9TBIg8ZlNjZuex6Wx9iiyFr75623BgzFSBeRs6cvd8o8uQX:YNLptIbvNFlx6Wx9XyFr7seUPi1QX Copy to Clipboard
C:\Users\FD1HVy\Desktop\OKWfLhmwWcu5qOaGL.avi.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 14.22 KB
MD5 8b06736c1e1c9a7df8ee9d57de00bedd Copy to Clipboard
SHA1 3b367413b540bde49d5c0459aab0f0b4018bd67b Copy to Clipboard
SHA256 073b4edf65dfd5de8289e33f44632e14e1a4f9f1e17b8a42b104590b9f0628c5 Copy to Clipboard
SSDeep 384:vfiiUKvevfb/pr8GWn2GgYPkrfeV6iqD8ax8SQgUUA7:vDIflFdGgYPkgID8CZA7 Copy to Clipboard
C:\Users\FD1HVy\Desktop\rrB-W8Ex2Gbzq310V5Y.jpg.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 16.49 KB
MD5 0a2f916ded533e1c6d81a03825e9d9dc Copy to Clipboard
SHA1 4ffcb2ab4cff4cd5767c521527c1252f9c1dbde3 Copy to Clipboard
SHA256 38211a38fb3e84bceddb190b3f09ebc823a16bdd0dfe8522458302a8d34bd5f1 Copy to Clipboard
SSDeep 192:igK0H2yV06HCg97tEOpUvMykOpy5XTl3FsYlHWMqqP8dWlh4aXyTFxcDiFv7Shch:fnh7CItfQMyE5Xx1sYlfqzg9aFqDiliI Copy to Clipboard
C:\Users\FD1HVy\Desktop\Sa rHH25WBZ3QNDj7vy.jpg.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 8.01 KB
MD5 6e162b9d60e07a1af167dedbc496b35f Copy to Clipboard
SHA1 349985513c2c53e442a2487196450f6c809a073b Copy to Clipboard
SHA256 fb0689fb4953cf0c7c9950e89116fe4397dc45482d22cc2d719cf31b3aa7a73d Copy to Clipboard
SSDeep 192:CT8xX5YC3zn1wLCe3WSWvQbLLcF3r/LBbfnSOrgjwz5OE:C8X55D15xIrcprVrnNgjw1OE Copy to Clipboard
C:\Users\FD1HVy\Desktop\WZcxh9yKmkx2N8.m4a.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 5.34 KB
MD5 f7c055b2f19f051326150bf797b92cf6 Copy to Clipboard
SHA1 ea9ec9d28f9002ec59a9d53d3e72cd59219aef10 Copy to Clipboard
SHA256 057d1bec546eb3570416fe5e2746651bcc24fcfd58d419d48eebf7bfa54c6c36 Copy to Clipboard
SSDeep 96:K1ETtFJHt3Lt3AS1b5IF3UWyDqZkwibmCtQl6F07rj1RE:fTpHxiHKVDoibmCCrRRE Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\FQH0eS7fuhi.flv.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 16.95 KB
MD5 3babf518ba2218a27df9629c810c2011 Copy to Clipboard
SHA1 2ac4494b486078ae35c6ad2f920f643ac9f41c4c Copy to Clipboard
SHA256 9bc81399192fa29a1f879066eac55c764b59ce179a6395ee6dcfa40769bfa633 Copy to Clipboard
SSDeep 384:qIOkesqJ2zGbFDVslafsvqPsCJPidiSf7r6DF6bf/X6+5BMv:q/FsqHJVs+PsCJPYiQ7ysq+5B0 Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\SS1V.mp3.FilGZmsp Dropped File Stream
Unknown
...
»
Mime Type application/octet-stream
File Size 31.29 KB
MD5 6153655ea22d9e87f82dcfb1877479c6 Copy to Clipboard
SHA1 55c51fa8c6060c0c912498f84907613d790622fb Copy to Clipboard
SHA256 2d07393bfcefecea349ddb6302c0043b527497bae04cc6feb77375f652f9783b Copy to Clipboard
SSDeep 768:v3JSl2d1J1EVRpdu0ph1ghlTP9Gj02Fg9rhiVpt:Bd1Qrk0pngfT9VoVf Copy to Clipboard
C:\Users\FD1HVy\Desktop\0Dq8DV.jpg.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 47.45 KB
MD5 d402d225bacab696630fef1fbc99ec94 Copy to Clipboard
SHA1 c3716a2894782b91c379c82decca2e21c0aaf97d Copy to Clipboard
SHA256 714e0c237cf0a8a4a7b224e9577eb2fde9a05738396f087c33e6b96192a2fdbe Copy to Clipboard
SSDeep 768:foBqjNtv08ZWrXtJu2CAc/U5FoWtKHFFj1fmgqaWXGJKX6C6xB72KhMqL9FjFY0V:foBB8gtxEcbVtKlP8aWTWiAzjnUlg Copy to Clipboard
C:\Users\FD1HVy\Desktop\0X-S5DVXJ55.ppt.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 64.41 KB
MD5 0c8131bcefbb294cc86c3520e3e9e65d Copy to Clipboard
SHA1 75d785ccb7052432a403ff8aaa06f7564cabe14e Copy to Clipboard
SHA256 f6de6c71bf457ba4d700af14b6a23d048921b850728978ad7d5d940c6489518a Copy to Clipboard
SSDeep 1536:oX8O6+UPsNbSdpbqENc76g95dbqqxnNZYKR7fS8K/6sTU4:oM5PMbSdpbqENk6gFbqq/fR7fS8K/FT5 Copy to Clipboard
C:\Users\FD1HVy\Desktop\2IpG0.wav.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 7.81 KB
MD5 4626b903656c6051601866e4315cdc7f Copy to Clipboard
SHA1 a6c80241a0de9798054cd88d7fe34fd48c51b66d Copy to Clipboard
SHA256 641fcc19b4dfc0733e00854bda8d8dc0c25eb8db59d81960f52456b85e655847 Copy to Clipboard
SSDeep 192:AK3N8+SFZF4Jcf86KnPiz4xncGyvtRZMksw:AK3N8+STFy6n3GydMksw Copy to Clipboard
C:\Users\FD1HVy\Desktop\41jdCZmpo.m4a.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 30.10 KB
MD5 b1e4c506b03e034e45d5542b414e8e5d Copy to Clipboard
SHA1 e0f13c965eeeb2a339d9fc5cc53e5e34b1f9f383 Copy to Clipboard
SHA256 af7c7ab6e3d109fb326f23abb6030bbdee0d35578ea24905c756582ec6ffa06e Copy to Clipboard
SSDeep 768:+GEhz0E1AVGSHo+1u5sn010hsFbHadnM7xyBzDDyB:+fz0EegA91uqcFbHaR+x6ns Copy to Clipboard
C:\Users\FD1HVy\Desktop\6oa-CSF.pptx.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 24.04 KB
MD5 9f8e30dd0483d32424ffab4eb6a187f1 Copy to Clipboard
SHA1 bc3f8180df6a3901cb2090f10e81694de3d8a4c2 Copy to Clipboard
SHA256 bd623ee57b7fd7aac8be4ff2d9842ad0a648848eba16b303d0ec670fd629dfc6 Copy to Clipboard
SSDeep 384:KEPtohj7W2/KPYjglvo4PjlY5eHOVAq4m1cYm7cP22tpueZxmd9HnBznYj:KEP2hyPs01PxaeSAzecYh2QpeHBUj Copy to Clipboard
C:\Users\FD1HVy\Desktop\Ag_S2MWic2.png.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 1.09 KB
MD5 67281c2b965792aea9030ffb6d1e1483 Copy to Clipboard
SHA1 8c397a36e3d7daa8cd04b489c32713fa52bf07d6 Copy to Clipboard
SHA256 31bf4662a1233ce60210c40a61506515dd40c2c2ecd24f05e3e84f8c3c55fad2 Copy to Clipboard
SSDeep 24:ldr+i0lfbdwob9vEDeqtCbwtKssVc+Ci6o8pEHi2Qvl:DiPgoxcD58CKssVyBocEM Copy to Clipboard
C:\Users\FD1HVy\Desktop\aLLtQe.avi.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 96.45 KB
MD5 0d94ad6d54eccf49243b17e594d7976c Copy to Clipboard
SHA1 23d9ae0dfd51abd99d91d5f6cf0e20ddf22c3543 Copy to Clipboard
SHA256 950def8bb527100952e907848d56e2638f72f0b1c65c70028cb7b8309555f76e Copy to Clipboard
SSDeep 3072:7oQ4iGvNWntkpoWs3h2h0h7U088oReAvgwaiQPUIx:EiG1Wtky3kMo0hbxiQPUIx Copy to Clipboard
C:\Users\FD1HVy\Desktop\AURvHfheOx1i.swf.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 29.34 KB
MD5 9ac8f3b7abb573381373010e49a99f94 Copy to Clipboard
SHA1 341c4270d1d3cba75432f75df302f9ea3552b5ec Copy to Clipboard
SHA256 b1050730510aaea590749b99dfb2fa5a8a91f5db171b5a487723c6700de27b41 Copy to Clipboard
SSDeep 768:prz79Ev3SJkvjrGHZJP6CzdB0JRUxlBj12yHGdz77Gs+r2KOWU:RFEviFZNdGJRIlx1aV7w2FWU Copy to Clipboard
C:\Users\FD1HVy\Desktop\BqgUDiIk osrwPL.mp3.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 94.72 KB
MD5 55ce75a589b3af8f68cd2d2d9179d235 Copy to Clipboard
SHA1 ee8ca050ef008fdad026b3a02ef6a0403f578286 Copy to Clipboard
SHA256 24d1fb70ce137f0e0073d4d709e3a6babee5f2fa3850e75e275dcdf952bbffda Copy to Clipboard
SSDeep 1536:IiKgqJUgstPh1Q1zejjrUSnXGygz14oUrAKUpHgLELU8QWUtsbHL3NFcYW2Ey5Q:cge7MjoSn6J4oUDWvU8JU27cp0Q Copy to Clipboard
C:\Users\FD1HVy\Desktop\desktop.ini.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 282 bytes
MD5 78b13f36f288869ab09241652b3c6493 Copy to Clipboard
SHA1 cf0b176286a5e4cc47de323eda01cd6132987151 Copy to Clipboard
SHA256 299e97bfdf1da5edb3bfd09677e8056206dfdeccbd35ac49d3a71beeeda27e61 Copy to Clipboard
SSDeep 6:C66tg0gPH2HBnQkUMhnhXr0hQ3Dutr+NzprfwOLEavHNl8RdkC:90tHqShXghWuAzFpf4RSC Copy to Clipboard
C:\Users\FD1HVy\Desktop\Jl2N2rnE59pjXp.xls.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 44.14 KB
MD5 53ecb95e10bc9cb28381c9b09f97abc0 Copy to Clipboard
SHA1 d2f54eefc44bab15a694af206bbcaaa3b87f8296 Copy to Clipboard
SHA256 3b79f3f4d17f288247fac612b6db37d525d95e106afafc2e07e8c2fc5417538f Copy to Clipboard
SSDeep 768:OQby2NJyx7ZJ+b2VwG/9ijIPG5UyHYHwyBsgw9wtzG2ARg1p2Qt2fK/sgp/0Zjkm:l477+5AiEPyowyBowUcpAK/lt0Om Copy to Clipboard
C:\Users\FD1HVy\Desktop\JZuk.bmp.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 51.22 KB
MD5 c8c048a9d22abefc0fecc0b9ebd209f2 Copy to Clipboard
SHA1 4d7ee8a264e92331f142d9f1bd009709ffc6ebe8 Copy to Clipboard
SHA256 75d88a6be6772cf84dc0d59b722036d384e29b5d6c04af1e0d358bad0dc1adfe Copy to Clipboard
SSDeep 768:Wbzr9brzMs+jCzcJnqLU9A73EQn4jBD1v33++/RFptLZyo7VK65PzGRqIU6ZNmr:WvFr3aCMqIw0/lp3uSRFHLZN5/FoU66r Copy to Clipboard
C:\Users\FD1HVy\Desktop\Lcy6ULqCFh5oc.m4a.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 95.25 KB
MD5 e4a7e693a6edfa6c93e0753377efec33 Copy to Clipboard
SHA1 6ca24d9beb98df5c9ddb8fde00e107fa4337b12e Copy to Clipboard
SHA256 9da3274e17ec31fe93195d5ed1fc0222ecc2cc7341c62859d8b2ed1f494f698a Copy to Clipboard
SSDeep 1536:WPjXclDDDCH4RbLbjZTd8YiqaagtAMo1IgvlJPnSpjBQjCZV4OHxbJcFo+Z+JW:QODrlbZThiqaa1Mo15vnSp+jCf4OHz6p Copy to Clipboard
C:\Users\FD1HVy\Desktop\LPTP-K_YKmqLf5vm.xlsx.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 87.63 KB
MD5 55aa99dab6e4aa32ba0e51aad620783e Copy to Clipboard
SHA1 9c5e65b83966411389041d4dbfdc14fd06b44361 Copy to Clipboard
SHA256 bf37bbd8dc8a9d2358ef34c0112155f0afe49952a71bfcc73b109199a4ec4d0d Copy to Clipboard
SSDeep 1536:D2mXLa2RXWzz2RFFwEm8k4KifbmNIulvtxpO0fwotZPnorHWP1kQ:vNc6R4HkbmSuxtlxorHW9kQ Copy to Clipboard
C:\Users\FD1HVy\Desktop\rwhEj_au.m4a.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 20.99 KB
MD5 a9f30de07570af7f664676d8a13df381 Copy to Clipboard
SHA1 06a7de95458c7a54e8e175170c3a59e6da3d7880 Copy to Clipboard
SHA256 a2b38b2e9b107f2b15c7d8a1fdc8ccb6e929b87fa389d1bbf7823940d8f58818 Copy to Clipboard
SSDeep 384:T0x2IjKROunvtfJUcoJzzlzE4+A9DSEh3IvdVBrQcho7Sqg2j0T8:T0xNKROuvtfJUpdERiDSEh4FrXhodgAh Copy to Clipboard
C:\Users\FD1HVy\Desktop\v7ySBIDKOsB6.wav.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 58.08 KB
MD5 6850a5f7e3e46858a86fbc1b3ecd7be9 Copy to Clipboard
SHA1 108cd77017f9ec9148c2e1a9488c1de5877e53a9 Copy to Clipboard
SHA256 24fce55c3cdd17c070c8d861ce806ebbf514eda9850b4f5492d39df09484b8c6 Copy to Clipboard
SSDeep 1536:zH5IfASqPVI4XaQUIXNdM+fKFI7g+AfaLFe5uTUalwj/X:V6LyGdle/M+PgliuqURX Copy to Clipboard
C:\Users\FD1HVy\Desktop\vAirtIzQaFanKF.swf.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 41.38 KB
MD5 bcd94ff31c2d1f57934525c200ddf082 Copy to Clipboard
SHA1 e611cea42bc883080b0e9dd29cb4ea14a3e49112 Copy to Clipboard
SHA256 35f9dc3a681eee5e85b0d2c3fcea8ec0f6fab7fbbecfd60eab4ae6d21da95df9 Copy to Clipboard
SSDeep 768:BN0qaDAV1rm3Tf99z6IIn+Yh3cVHR7BTDJeNwwB9UVXfWBsgg/meKwMgZ:BNy00TVQF1pcD7BTDJmr+fQXjeKwMgZ Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\8JhfB.jpg.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 34.48 KB
MD5 16708f8b05d181986c0c91acab176445 Copy to Clipboard
SHA1 fd10b4ddeb0e8bdeb63d8b07a3334faabe19ce02 Copy to Clipboard
SHA256 46af68203bbfcb6f276d416f9ed51b821a846c21e7d0d5fb2258e06d1592446a Copy to Clipboard
SSDeep 768:tWfSMxUbeZZ/tcvGorR76xo3fW7up8he3Sd4QrBRxT+F9Np1Ury:UfjIGS3t1ieQNRZiNLUe Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\9Q5R_fBUKWX9lHvs25T.bmp.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 92.85 KB
MD5 1456f693392e621d9f81ddacdd3af27a Copy to Clipboard
SHA1 34141923cef0b66618541d32a9561eaf0f9764fa Copy to Clipboard
SHA256 c19853c1f8ec5766a1d17e7dd815db5d12af47a6566edb758fd57e3f51b407d6 Copy to Clipboard
SSDeep 1536:qbBRYLkUjabf9iG9/XixoIKE2CP845zfgrR/McLwcZGaqN1xcBaIIpJFpOT3HDlE:q9RECh9vidiCE45gracLZZGaqpcBWJFt Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\AMM2g-fJbZQfHhiIiTsQ.docx.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 19.64 KB
MD5 571fb7cd6a05dd50a044b4782ea43267 Copy to Clipboard
SHA1 aa2cf661724f4471640a7983c9f0ad671eff342d Copy to Clipboard
SHA256 04dbf4fe4c64df65bbb341409edd9dff6209b65aca72279de120ee9299448ff6 Copy to Clipboard
SSDeep 384:li+Fqh3quZzAW6skVNYLmhFrf2bDXrvYI+yCsYUPJxZjJugE3iN4Tj:li+UhjuNMmriDjYf43N9Noj Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\F n0c9A.mkv.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 9.67 KB
MD5 42daba14b4c68a726b1776521d38363f Copy to Clipboard
SHA1 99de6fa2a351fd73ac092ffc71ac12f2b87e3aaf Copy to Clipboard
SHA256 08ddaf6e74c6df12b4136a030b2f35e7e99601c0223d2716adecbd2ead614165 Copy to Clipboard
SSDeep 192:/QkeNlAqE5iqs4ZAVNR8+TueGObfWFt4jd5aVhZ7BFBauN1ymgx575EZJ:49uiT46NRJn/SFtGd5kBvN1Wx5752J Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\Iv_UL1Smn68W.pptx.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 3.35 KB
MD5 180ba14f9aa3668e4a1b07fc597f9259 Copy to Clipboard
SHA1 c8d5e8b6135024ca00961b86dbc08671416a5a46 Copy to Clipboard
SHA256 c1cdeb6200ed37f7b9a1dbc0f63b3625cfe7e4fa0be978de83a077fa27f49f37 Copy to Clipboard
SSDeep 96:DG+0a3foq7KOey4bJTRwdI7EgIKPJ+28PpaLb2Dp:K+Jvo0KOey4bJidhNIkP2SDp Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\LdiI7dOGdPlqqn4FPm.csv.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 4.00 KB
MD5 a1967136cba536f3d82f8b4714f762e3 Copy to Clipboard
SHA1 ff1b4f12b0f9a6ebf4b40b359624611eb068c879 Copy to Clipboard
SHA256 92a089ba9054f9c7ab75cbd746c81f652fbd7e9a6de9b021c49fe598852fa4e3 Copy to Clipboard
SSDeep 96:QfOsGyyZ6tMua36HKJjvdMKuP8PD4L9znVd/MN3hVVWYIenF6fPHcEB:Qf74Z6tMD36qJj6PsCt/oVVrkBB Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\p5KNKVfrENUFkNTd.jpg.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 23.83 KB
MD5 2c096152e858d36218f5b44c2f2fa30f Copy to Clipboard
SHA1 902782f69fb07afefe1cc64dede58f57346e251d Copy to Clipboard
SHA256 7cbc56ea7226ec187972ef52577d800182d21e09648c3f9c043fc93a59afa6f5 Copy to Clipboard
SSDeep 384:91YDiydX+6SzsKqStanplIVbB4EFmYeFGumnYwHfWu35X0dquAVdTeiiR0T9mW/3:9K7dX+Z2Stanp+VbBhF4FAOupXUOVdTX Copy to Clipboard
C:\Users\FD1HVy\Desktop\y8Oq3F1\x8c4k zgybMBqz.pps.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 88.75 KB
MD5 9393eb8bc0ae7c27b66a46e8836d9b4e Copy to Clipboard
SHA1 99ef3f4979cb6d90abae9a2b86262d848c6cdb8d Copy to Clipboard
SHA256 20f7861744d1615f610cee5d8277fdbf2fdffca67d9b3643ba1dbac97123c608 Copy to Clipboard
SSDeep 1536:OPUx3LEIpk98yNlMPM5Crb4D97W00ZuUvVyXz8K2kuC5yAmWuWuQyFgOaUB6YWfh:OPUVIIpkKy3ME5Ies00ZuUdyX4K2rC5F Copy to Clipboard
C:\Users\FD1HVy\Desktop\ynYByG93A60UMcX.gif.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 13.44 KB
MD5 0049ac5b1d580ef2378967a5ce13bf33 Copy to Clipboard
SHA1 9da8b38928ac9818f7f6baf068a2d1a34f348284 Copy to Clipboard
SHA256 03807b3e267611a101890987a616759de0b8392e91b933afc00faf70f2ac5207 Copy to Clipboard
SSDeep 384:9SXUGnm33whpdAxCqw5CEuWfT2mPRnlaZXGPzoeUBP:0Nn75GgwWrpPRngozolP Copy to Clipboard
C:\Users\FD1HVy\Desktop\ZsRJeI7s.mkv.FilGZmsp Dropped File Stream
Not Queried
...
»
Mime Type application/octet-stream
File Size 54.48 KB
MD5 ce293eeff59b11a68183eaf0ba6e0f7d Copy to Clipboard
SHA1 584565b6ba04d3fd1907dae58587b706463c2d45 Copy to Clipboard
SHA256 f82068bf54a498f03438c7a8f9447ef51dad43e08bbad79d48c2c306d1ab5387 Copy to Clipboard
SSDeep 1536:JqKPHgvSPb9I/M8asovuFSGbqgiF5I35ilqa:kCHgvUIUTsUc7bqgi3lqa Copy to Clipboard
C:\Users\FD1HVy\Desktop\\!!ÊàêÐàñøèôðîâàòüÝòóÏàðàøó.txt Dropped File Text
Not Queried
...
»
Mime Type text/plain
File Size 213 bytes
MD5 eaeefe50a0ba2470e6e52619be942adf Copy to Clipboard
SHA1 6b838b482296e34abf61659681bf5bf716b50bda Copy to Clipboard
SHA256 237144ea9b07403bf38f7a143d7f0b90d526d65e3280808045e3da303ff547aa Copy to Clipboard
SSDeep 6:/bX2moFAJYJGXYblvtbKvg8RluM+yl3vyNUqFYQICBZyY:/jnoFA7IbllGvFuMCmZQd Copy to Clipboard
Exit-Icon
WHOIS Domain Information
Domain Name
WHOIS Response 

       		
      

     

    

   

  

  

  

  

   

    
    

     Function Logfile
    

    

     

      Download-Icon
     

    

    

     Exit-Icon
    

   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    Before
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    After
   

   

    

     

      
       This feature requires an online-connection to the VMRay backend.
      
      

      

      An offline version with limited functionality is also provided.
      

      The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".
     

     

    

   

   

    

     
      

       
       
       
       
      

     
     
     
    

   

  

  

   

    
    

     Screenshot
    

    

     Expand-Icon
    

    

     Exit-Icon
    

   

   

    

     icon_left
    

    

     icon_left
    

   

   

   

   

    image