Analysis Date2018-05-10 10:09:58
MD5fcdf3e0d4b63898c2c3c52522fce1901
SHA19010773e40cab6f1d04294d6daa30751b465509c

Static Details:

AVArcabit (arcavir)Trojan.GenericKD.1958089
AVAuthentiumW32/Trojan3.LWY
AVGrisoft (avg)Generic38.BTWV
AVAvira (antivir)TR/Dldr.Waski.dkn
AVAlwil (avast)Downloader-UNP [Drp]
AVAlwil (avast)Evo-gen [Susp]
AVAd-AwareTrojan.GenericKD.1958089
AVBitDefenderTrojan.GenericKD.1958089
AVBullGuardTrojan.GenericKD.1958089
AVClamAVWin.Trojan.Sisproc-5
AVDr. WebTrojan.Upatre.112
AVEmsisoftTrojan.GenericKD.1958089
AVMicroWorld (escan)Trojan.GenericKD.1958089
AVCA (E-Trust Ino)Trojan.GenericKD.1958089
AVFortinetW32/Waski.F!tr
AVFrisk (f-prot)W32/Trojan3.LWY
AVF-SecureTrojan.GenericKD.1958089
AVIkarusTrojan-Downloader.Win32.Upatre
AVK7Trojan-Downloader ( 0049d22b1 )
AVKasperskyTrojan-Downloader.Win32.Agent.hfdg
AVMalwareBytesTrojan.Email.FakeDoc
AVMcafeeUpatre-FAAC!FCDF3E0D4B63
AVMicrosoft Security EssentialsTrojanDownloader:Win32/Upatre
AVNANOTrojan.Win32.Upatre.difjwy
AVEset (nod32)Win32/TrojanDownloader.Waski.F
AVPadvishNo Virus
AVCAT (quickheal)TrojanDownloader.Upatre.AA3
AVRisingNo Virus
AV360 SafeNo Virus
AVSUPERAntiSpywareNo Virus
AVSymantecTrojan.Asprox.B
AVTrend MicroMal_Arkam
AVTwisterTrojanDldr.Upatre.dmp.fxyf
AVVirusBlokAda (vba32)TrojanDownloader.Agent
AVWindows DefenderTrojanDownloader:Win32/Upatre
AVZillya!Downloader.Agent.Win32.308862

Runtime Details:

Screenshot

Process
↳ C:\Windows\System32\lsass.exe

Process
↳ C:\Users\Phil\AppData\Local\Temp\9010773e40cab6f1d04294d6daa30751b465509c.exe

Network Details:


Raw Pcap

Strings