Cuckoo Sandbox

Name	02be62eb6e6ff64b_v9g0134h.exe Download Submit file
Filepath	C:\Users\Administrator\AppData\Roaming\v9g0134h.exe
Size	61.5KB
Processes	2772 (a46d6f9493e699bb445276642b8139e0439aa829a5d3d1b8c44cab3a164291ed.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`fb4a6e7dc2e6df419fe09245e2c54162`
SHA1	`1dbec5f1bb9d8a91887c3910039a0c6aacb64dfb`
SHA256	`02be62eb6e6ff64b8c359d90e9599bb14a74495e009ac297e9bcdb95701e2d6f`
CRC32	`AA88766F`
ssdeep	`None`
Yara	anti_dbg - Checks if being debugged network_http - Communications over HTTP win_mutex - Create or check mutex win_registry - Affect system registries win_files_operation - Affect private profile
VirusTotal	Search for analysis

Name	afa29518deb31dfa_umcuwp8de.exe Download Submit file
Filepath	C:\Users\Administrator\AppData\Roaming\umcuwp8de.exe
Size	61.5KB
Processes	2380 (v9g0134h.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`30dc818aacda37f8e0496660595e68d8`
SHA1	`94cfd3b7af4024e035638d57c0e817fbad35e98c`
SHA256	`afa29518deb31dfae78f21bad6800c376120ccdf1b26edf29ef7a03fe6b1beb2`
CRC32	`C0D39410`
ssdeep	`None`
Yara	anti_dbg - Checks if being debugged network_http - Communications over HTTP win_mutex - Create or check mutex win_registry - Affect system registries win_files_operation - Affect private profile
VirusTotal	Search for analysis

Dropped Files