Analysis Date2018-05-12 04:23:03
MD5e4a460b9ba5529b5d308b9e2cebfecd1
SHA1f0d3821e786c9b7c57f15f0413d3b14f7fc71056

Static Details:

AVArcabit (arcavir)Win32.Virtob.Gen.12
AVAuthentiumW32/Virut.AM
AVGrisoft (avg)Generic_vb.BU
AVAvira (antivir)W32/Virut.Gen
AVAlwil (avast)VxBehav
AVAlwil (avast)Win32:VxBehav
AVAd-AwareWin32.Virtob.Gen.12
AVBitDefenderWin32.Virtob.Gen.12
AVBullGuardWin32.Virtob.Gen.12
AVClamAVWin.Worm.VB-1514
AVDr. WebWin32.Virut.56
AVEmsisoftWin32.Virtob.Gen.12
AVMicroWorld (escan)Win32.Virtob.Gen.12
AVCA (E-Trust Ino)Win32.Virtob.Gen.12
AVFortinetW32/Virut.CE
AVFrisk (f-prot)W32/Virut.AM
AVF-SecureWin32.Virtob.Gen.12
AVIkarusWorm.Win32.WBNA
AVK7Virus ( f10002001 )
AVKasperskyVirus.Win32.Virut.ce
AVMalwareBytesWorm.Obfuscator
AVMcafeeGeneric VB.kk
AVMicrosoft Security EssentialsVirus:Win32/Virut.BN
AVNANOVirus.Win32.Virut.hpeg
AVEset (nod32)Win32/Virut.NCS virus
AVPadvishVirus.Win32.Virut.BNZ2
AVCAT (quickheal)W32.Virut.G
AVRisingError Scanning File
AV360 SafeVirus.Win32.Virut.M
AVSUPERAntiSpywareTrojan.Agent/Gen-Melekr
AVSymantecW32.Changeup
AVTrend MicroPE_VIRUX.R
AVTwisterNo Virus
AVVirusBlokAda (vba32)Virus.Virut.14
AVWindows DefenderVirus:Win32/Virut.BN
AVZillya!Virus.Virut.Win32.1938

Runtime Details:

Screenshot

Process
↳ C:\Windows\System32\lsass.exe

Process
↳ C:\Users\Phil\AppData\Local\Temp\f0d3821e786c9b7c57f15f0413d3b14f7fc71056.exe

Network Details:


Raw Pcap

Strings