Analysis Date2018-02-13 09:37:57
MD5
SHA1cdb105dd1cc7778a99b635cd2e0a6a35c3d65777

Static Details:

AVArcabit (arcavir)Gen:Trojan.Heur.kqW@XYkxf3g
AVAuthentiumW32/Shifu.A.gen!Eldorado
AVGrisoft (avg)Crypt_r.QJ
AVAvira (antivir)TR/Dropper.Gen
AVAlwil (avast)Heim
AVAlwil (avast)Shifu-B [Trj]
AVAlwil (avast)Win32:Heim
AVAd-AwareGen:Trojan.Heur.kqW@XYkxf3g
AVBitDefenderGen:Trojan.Heur.kqW@XYkxf3g
AVBullGuardGen:Trojan.Heur.kqW@XYkxf3g
AVClamAVWin.Trojan.Shifu-6330434-1
AVDr. WebTrojan.MulDrop7.20629
AVEmsisoftGen:Trojan.Heur.kqW@XYkxf3g
AVMicroWorld (escan)Gen:Trojan.Heur.kqW@XYkxf3g
AVCA (E-Trust Ino)Gen:Trojan.Heur.kqW@XYkxf3g
AVFortinetW32/Shiz.NCQ!tr
AVFrisk (f-prot)W32/Shifu.A.gen!Eldorado
AVF-SecureGen:Trojan.Heur.kqW@XYkxf3g
AVIkarusTrojan-Banker.ShiFu
AVK7Spyware ( 004ce3951 )
AVKasperskyTrojan-Banker.Win32.Shifu.eph
AVMalwareBytesSpyware.Shiz
AVMcafeeTrojan-Shifu!35BC095AD31D
AVMicrosoft Security EssentialsBackdoor:Win32/Simda!rfn
AVNANOTrojan.Win32.Shiz.dvsrfy
AVEset (nod32)Win32/Spy.Shiz.NCR
AVPadvishNo Virus
AVCAT (quickheal)Backdoor.Simda.S477658
AVRisingNo Virus
AV360 SafeNo Virus
AVSUPERAntiSpywareNo Virus
AVSymantecSMG.Heur!gen
AVTrend MicroNo Virus
AVTwisterTrojanSpy.Shiz.NCR.lfjo
AVVirusBlokAda (vba32)Trojan.Yakes
AVWindows DefenderBackdoor:Win32/Simda!rfn
AVZillya!Trojan.Shiz.Win32.2662

Runtime Details:

Network Details:


Raw Pcap

Strings