Analysis Date2018-05-14 04:44:42
MD5cfe95cc62fd61710abad520583b14523
SHA1d7d8aec429dc85bb3b80cd1f6e0de53fa125fa5e

Static Details:

AVArcabit (arcavir)Gen:Variant.Barys.58165
AVAuthentiumW32/Nivdort.L.gen!Eldorado
AVGrisoft (avg)Generic38.NKP
AVAvira (antivir)TR/Nivdort.uqvha
AVAlwil (avast)Malware-gen
AVAlwil (avast)Win32:Malware-gen
AVAd-AwareGen:Variant.Barys.58165
AVBitDefenderGen:Variant.Barys.58165
AVBullGuardGen:Variant.Barys.58165
AVClamAVNo Virus
AVDr. WebTrojan.DownLoader26.45311
AVEmsisoftGen:Variant.Barys.58165
AVMicroWorld (escan)Gen:Variant.Barys.58165
AVCA (E-Trust Ino)Gen:Variant.Zusy.189044
AVFortinetW32/Bayrob.BT!tr
AVFrisk (f-prot)W32/Nivdort.L.gen!Eldorado
AVF-SecureGen:Variant.Barys.58165
AVIkarusTrojan.Win32.Bayrob
AVK7Trojan ( 0052ecdd1 )
AVKasperskyTrojan.Win32.Bayrob.gen
AVMalwareBytesNo Virus
AVMcafeeTrojan-FINB!CFE95CC62FD6
AVMicrosoft Security EssentialsNo Virus
AVNANOTrojan.Win32.Bayrob.egsktv
AVEset (nod32)Win32/Bayrob.BS
AVPadvishNo Virus
AVCAT (quickheal)TrojanSpy.Nivdort.WR4
AVRisingNo Virus
AV360 SafeNo Virus
AVSUPERAntiSpywareNo Virus
AVSymantecTrojan.Bayrob!g12
AVTrend MicroNo Virus
AVTwisterW32.Toolbar.CrossRider.AE.czia.mg
AVVirusBlokAda (vba32)BScope.Trojan.Bayrob
AVWindows DefenderNo Virus
AVZillya!Trojan.SwizzorGen.Win32.1

Runtime Details:

Screenshot

Process
↳ C:\Windows\System32\lsass.exe

Network Details:


Raw Pcap

Strings