Analysis Date2018-05-25 18:44:45
MD5
SHA199b0d836e6c8708fb61680077bfbe012581268c8

Static Details:

AVArcabit (arcavir)Trojan.Crypt.AI
AVAuthentiumW32/Socks.A.gen!Eldorado
AVGrisoft (avg)Win32/DH{Tjk?}
AVAvira (antivir)TR/Dldr.Agent.agl
AVAlwil (avast)Small-JMK [Trj]
AVAlwil (avast)Small-JVY [Trj]
AVAd-AwareTrojan.Crypt.AI
AVBitDefenderTrojan.Crypt.AI
AVBullGuardTrojan.Crypt.AI
AVClamAVWin.Worm.Socks-9
AVDr. WebBackDoor.FireOn.70
AVEmsisoftTrojan.Crypt.AI
AVMicroWorld (escan)Trojan.Crypt.AI
AVCA (E-Trust Ino)Trojan.Crypt.AI
AVFortinetW32/Socks.NAL!tr
AVFrisk (f-prot)W32/Socks.A.gen!Eldorado
AVF-SecureTrojan.Crypt.AI
AVIkarusTrojan-Downloader.Small
AVK7EmailWorm ( 000415851 )
AVKasperskyTrojan-Dropper.Win32.Dapato.ohqc
AVMalwareBytesNo Virus
AVMcafeeBackDoor-DRW
AVMicrosoft Security EssentialsTrojan:Win32/Malex.gen!J
AVNANOTrojan.Win32.Socks.dbszmw
AVNANOTrojan.Win32.Socks.oojm
AVEset (nod32)Win32/PSW.Agent.NHG
AVPadvishWorm.Win32.Socks.ja
AVCAT (quickheal)Trojan.Mauvaise.SL1
AVRisingTrojan.Agent!4DB5
AV360 SafeNo Virus
AVSophosTroj/Agent-GRO
AVSUPERAntiSpywareWorm.Socks
AVSymantecW32.Mandaph
AVTrend MicroWORM_SOCKS.EC
AVTwisterVirus.B975BD09D2B05CF1
AVVirusBlokAda (vba32)Worm.Socks
AVWindows DefenderTrojan:Win32/Malex.gen!J
AVZillya!Worm.Socks.Win32.311

Runtime Details:

Network Details:


Raw Pcap

Strings