Analysis Date2018-05-19 21:09:26
MD53b569526c88c5a7720d43c1ed0afae9c
SHA12d12bcb69be878f0cd4dbd61efcd79f0303ebd29

Static Details:

AVArcabit (arcavir)Gen:Heur.Conjar.9
AVAuthentiumNo Virus
AVGrisoft (avg)No Virus
AVAvira (antivir)TR/Crypt.XPACK.Gen
AVAlwil (avast)No Virus
AVAd-AwareGen:Heur.Conjar.9
AVBitDefenderGen:Heur.Conjar.9
AVBullGuardGen:Heur.Conjar.9
AVClamAVNo Virus
AVDr. WebNo Virus
AVEmsisoftGen:Heur.Conjar.9
AVMicroWorld (escan)Gen:Heur.Conjar.9
AVCA (E-Trust Ino)Gen:Heur.Conjar.9
AVFortinetW32/Zbot.EKW!tr
AVFrisk (f-prot)No Virus
AVF-SecureGen:Heur.Conjar.9
AVIkarusNo Virus
AVK7Error Scanning File
AVKasperskyNo Virus
AVMalwareBytesNo Virus
AVMcafeeNo Virus
AVMicrosoft Security EssentialsNo Virus
AVNANONo Virus
AVEset (nod32)No Virus
AVPadvishNo Virus
AVCAT (quickheal)No Virus
AVRisingNo Virus
AV360 SafeNo Virus
AVSUPERAntiSpywareError Scanning File
AVSymantecNo Virus
AVTrend MicroNo Virus
AVTwisterNo Virus
AVVirusBlokAda (vba32)No Virus
AVWindows DefenderNo Virus
AVZillya!No Virus

Runtime Details:

Screenshot

Process
↳ C:\Windows\System32\lsass.exe

Process
↳ C:\Windows\System32\rundll32.exe

Creates FileC:\Users\Phil\AppData\Local\Temp\2d12bcb69be878f0cd4dbd61efcd79f0303ebd29.dll

Process
↳ C:\Windows\SysWOW64\rundll32.exe

Creates FileC:\Users\Phil\AppData\Local\Temp\2d12bcb69be878f0cd4dbd61efcd79f0303ebd29.dll
Creates FileC:\Windows\SysWOW64\en-US\KERNELBASE.dll.mui

Network Details:


Raw Pcap

Strings