VTI SCORE: 100/100
Target: | Windows 7 (SP1, 64-bit), MS Office 2016 (64-bit) | ms_office |
Classification: | Trojan, Dropper, Exploit, Downloader |
ca0da220f7691059b3174b2de14bd41ddb96bf3f02a2824b2b8c103215c7403c (SHA256)
Sales invoice Z12_01 copy.iqy.iqy
Excel Document
Created at 2018-06-06 09:51:00
Notifications (2/2)
The overall sleep time of all monitored processes was truncated from "3 minutes, 21 seconds" to "2 seconds" to reveal dormant functionality.
Indicators
File (40)
»
Registry (39)
»
Mutex (1)
»
Mutex Name | Operations |
---|---|
Global\.net clr networking | Access, Delete |
URL (3)
»
IP (2)
»
IP | Protocols |
---|---|
95.213.251.149 | HTTP, DNS, TCP |
185.222.202.139 | TCP |