Analysis Date2018-05-13 11:23:32
MD5b12625a0105236a1d16a94d32f47aec2
SHA1607e320973991927b91450b2398025254638dedd

Static Details:

AVArcabit (arcavir)Gen:Trojan.Heur.GM.040080E908
AVAuthentiumNo Virus
AVGrisoft (avg)Generic37.BYAK
AVAvira (antivir)W32/Parite.BadClean.Gen
AVAlwil (avast)No Virus
AVAd-AwareGen:Trojan.Heur.GM.040080E908
AVBitDefenderGen:Trojan.Heur.GM.040080E908
AVBullGuardGen:Trojan.Heur.GM.040080E908
AVClamAVWin.Trojan.Agent-475983
AVDr. WebNo Virus
AVEmsisoftGen:Trojan.Heur.GM.040080E908
AVMicroWorld (escan)Gen:Trojan.Heur.GM.040080E908
AVCA (E-Trust Ino)Gen:Trojan.Heur.GM.040080E908
AVFortinetW32/Dx.B2GX!tr
AVFrisk (f-prot)No Virus
AVF-SecureGen:Trojan.Heur.GM.040080E908
AVIkarusNo Virus
AVK7No Virus
AVKasperskyNo Virus
AVMalwareBytesError Scanning File
AVMcafeeNo Virus
AVMicrosoft Security EssentialsNo Virus
AVNANONo Virus
AVEset (nod32)No Virus
AVPadvishNo Virus
AVCAT (quickheal)No Virus
AVRisingNo Virus
AV360 SafeNo Virus
AVSUPERAntiSpywareNo Virus
AVSymantecTrojan.Pandex
AVTrend MicroNo Virus
AVTwisterTrojan.416A29A97880D124
AVVirusBlokAda (vba32)No Virus
AVWindows DefenderNo Virus
AVZillya!No Virus

Runtime Details:

Screenshot

Process
↳ C:\Windows\System32\lsass.exe

Process
↳ C:\Users\Phil\AppData\Local\Temp\607e320973991927b91450b2398025254638dedd.exe

Creates FileC:\Users\Phil\AppData\Local\Temp\607e320973991927b91450b2398025254638dedd.exe
Creates FileC:\Windows\Fonts\staticcache.dat
Creates MutexTrace yourself
Creates MutexZxMZY8EM
Creates MutexTrace yourself

Network Details:


Raw Pcap

Strings