Analysis Date2018-03-06 21:42:50
MD5
SHA1fbeb4ec8d7679985e3319c42415f66b485f3f1fa

Static Details:

AVMicroWorld (escan)Gen:Variant.Razy.18454
AVIkarusTrojan.SuspectCRC
AVFrisk (f-prot)W32/S-28f27b9f!Eldorado
AVEmsisoftGen:Variant.Razy.18454
AVFortinetError Scanning File
AVArcabit (arcavir)Gen:Variant.Razy.18454
AVNANOTrojan.Win32.Agent.dbyqsn
AVBitDefenderGen:Variant.Razy.18454
AVMalwareBytesNo Virus
AVCAT (quickheal)Trojan.Mauvaise.SL1
AVVirusBlokAda (vba32)Backdoor.CosmicDuke
AVAlwil (avast)Dropper-OXM [Trj]
AVAuthentiumW32/S-28f27b9f!Eldorado
AVBullGuardGen:Variant.Razy.18454
AVK7Error Scanning File
AVRisingNo Virus
AVF-SecureTrojan:W32/CosmicDuke.C
AVSUPERAntiSpywareTrojan.Agent/Gen-PWS
AVMcafeeGenericRXAA-AB!F65EB8AFA622
AV360 SafeNo Virus
AVSymantecBackdoor.Tinybaron
AVWindows DefenderTrojanDropper:Win32/Miniduke!rfn
AVGrisoft (avg)PSW.Agent.BFIZ
AVCA (E-Trust Ino)Trojan.Generic.11470599
AVAd-AwareGen:Variant.Razy.18454
AVDr. WebTrojan.PWS.Nitro
AVTwisterBackdoor.CosmicDuke.gen.blha
AVPadvishNo Virus
AVKasperskyBackdoor.Win32.CosmicDuke.gwc
AVTrend MicroNo Virus
AVEset (nod32)Win32/PSW.Agent.NYQ
AVAvira (antivir)TR/Rogue.11470599
AVClamAVWin.Trojan.11470599-1
AVMicrosoft Security EssentialsTrojanDropper:Win32/Miniduke!rfn
AVZillya!Trojan.Agent.Win32.472854

Runtime Details:

Network Details:


Raw Pcap

Strings