Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- * ID: 858
- * MalFamily: "Strictor"
- * MalScore: 10.0
- * File Name: "rat_215c0b67539bc19eb6fe50c79b78917a.exe"
- * File Size: 737280
- * File Type: "PE32 executable (GUI) Intel 80386, for MS Windows"
- * SHA256: "25a549daef7a464b48239af1d40f8aebba64dbadcbda0e99ce66b501aab7e36f"
- * MD5: "215c0b67539bc19eb6fe50c79b78917a"
- * SHA1: "2f5b8ef4128263e7ee3cf4eda3784e2f6d73fba7"
- * SHA512: "428390a958d2bab3d9bd4846e2d7a891095e735953bfe5d20b319eefa8a7c54e4a5df1e7f811522a7b86adc1332bad311ffccd8c969712d862ccf37532b1c17a"
- * CRC32: "18A4E368"
- * SSDEEP: "6144:zjFLYna3ZqRK2CTDcdMOupj8RM6V/rBuZoE:zjFLYn0emYdtIj8"
- * Process Execution:
- * Executed Commands:
- * Signatures Detected:
- "Description": "File has been identified by 21 Antiviruses on VirusTotal as malicious",
- "Details":
- "MicroWorld-eScan": "Gen:Variant.Strictor.200864"
- "FireEye": "Generic.mg.215c0b67539bc19e"
- "Cylance": "Unsafe"
- "Arcabit": "Trojan.Strictor.D310A0"
- "APEX": "Malicious"
- "Kaspersky": "UDS:DangerousObject.Multi.Generic"
- "BitDefender": "Gen:Variant.Strictor.200864"
- "Endgame": "malicious (high confidence)"
- "Emsisoft": "Gen:Variant.Strictor.200864 (B)"
- "F-Secure": "Exploit.EXP/Shell.wkswc"
- "DrWeb": "Trojan.PWS.Maria.3"
- "SentinelOne": "DFI - Suspicious PE"
- "Avira": "EXP/Shell.wkswc"
- "ZoneAlarm": "UDS:DangerousObject.Multi.Generic"
- "GData": "Gen:Variant.Strictor.200864"
- "ALYac": "Gen:Variant.Strictor.200864"
- "MAX": "malware (ai score=84)"
- "Ad-Aware": "Gen:Variant.Strictor.200864"
- "Panda": "Trj/GdSda.A"
- "CrowdStrike": "win/malicious_confidence_80% (D)"
- "Qihoo-360": "HEUR/QVM20.1.A2E9.Malware.Gen"
- * Started Service:
- * Mutexes:
- * Modified Files:
- * Deleted Files:
- * Modified Registry Keys:
- * Deleted Registry Keys:
- * DNS Communications:
- * Domains:
- * Network Communication - ICMP:
- * Network Communication - HTTP:
- * Network Communication - SMTP:
- * Network Communication - Hosts:
- * Network Communication - IRC:
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement