Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
Deep Malware Analysis
top title background image
flash

FJRxMHNxKr.exe

Status: finished
Submission Time: 2022-06-28 11:30:12 +02:00
Malicious
Trojan
Evader
FormBook

Comments

Tags

  • 32
  • exe
  • trojan

Details

  • Analysis ID:
    653548
  • API (Web) ID:
    1021050
  • Analysis Started:
    2022-06-28 11:40:46 +02:00
  • Analysis Finished:
    2022-06-28 11:53:52 +02:00
  • MD5:
    2ca4db9e581608faaacdd0533b4fd783
  • SHA1:
    78065a3d2fdc96c1c9de15a1ca7e39cd96be1137
  • SHA256:
    2c6f3126b960f02205390cf54a74de6e32d53cc1d6db64cc4744c9cca63ecca6
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Full Report Management Report IOC Report
malicious
Score: 100
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report
malicious
Score: 27/68
malicious
malicious

IPs

IP Country Detection
66.96.162.128
 United States
199.59.243.220
 United States
66.29.154.172
 United States
Click to see the 3 hidden entries
154.203.228.45
 Seychelles
198.54.117.217
 United States
35.241.60.53
 United States

Domains

Name IP Detection
www.mounscape.com
 66.96.162.128
www.rubing.xyz
 66.29.154.172
www.neilzhu.com
 154.203.228.45
Click to see the 5 hidden entries
www.kantotfix.com
 199.59.243.220
www.cryptoozi.com
 0.0.0.0
www.fsgk.club
 0.0.0.0
parkingpage.namecheap.com
 198.54.117.217
www.be1p.xyz
 35.241.60.53

URLs

Name Detection
http://www.neilzhu.com/iewb/?Qpq0vL=LhS4vlu8U&o4sXL=L999qEtgP+MZakE2AKuVxglU+JKSUfMhV/um4c1fxT3AdF5HpHlpHVqzCGCldjjEOegm
http://www.cryptoozi.com/iewb/?Qpq0vL=LhS4vlu8U&o4sXL=vJW//SK3yM7iqJyq9Cr754DCBQPaUdhfy9ZgjQ5+h1KBHDUWhWJJuPCmZ/Iml7T8YY/Z
http://www.rubing.xyz/iewb/?o4sXL=hjNorWNqj3eCauaTp4W+yZ6QXqzwQNfVgT2MzVYM0aPd8LoNirfTbiDTKJqmchvlj74T&Qpq0vL=LhS4vlu8U
Click to see the 84 hidden entries
http://www.kantotfix.com/iewb/?o4sXL=ArDwR6X4dySu0a3KNyWsUphvUTPDoSxXFFw4GVGDO0P3eKqagiphGUeBtTwLhfQztVq1&Qpq0vL=LhS4vlu8U
www.mounscape.com/iewb/
http://www.mounscape.com/iewb/?o4sXL=uxg61V0P47pJdeOyDuf+faSikBWNnLzg1Vt+Vm6XaOeUOFeadxkoBK0mevDcCX76rejJ&Qpq0vL=LhS4vlu8U
http://www.jiyu-kobo.co.jp/K
http://www.jiyu-kobo.co.jp/=
http://www.fontbureau.commU
http://www.fontbureau.comd
http://www.jiyu-kobo.co.jp/jp/
http://www.fontbureau.comaJ
http://www.jiyu-kobo.co.jp/C
http://www.fontbureau.comL.TTF
http://www.jiyu-kobo.co.jp/xT
http://www.jiyu-kobo.co.jp/u&
http://www.fontbureau.com/designers/cabarga.htmlN
http://www.fontbureau.com/designers~
http://www.jiyu-kobo.co.jp/U
http://www.fontbureau.comF
http://www.galapagosdesign.com/
http://www.fontbureau.com
http://www.apache.org/licenses/LICENSE-2.0
http://www.founder.com.cn/cn$C
http://www.jiyu-kobo.co.jp/
http://www.fontbureau.comrsivr
http://www.fontbureau.com/designers/
http://www.jiyu-kobo.co.jp/2.
http://www.be1p.xyz/iewb/?Qpq0vL=LhS4vlu8U&o4sXL=kg2xF9YEtWcMJIlgxGTSL4LtOQgpIPe7ItYY+QJNH5TO9/dc1UkqEe6tgnPgiQxNFgY0
http://www.fontbureau.comals
http://www.fontbureau.com/designers7
http://www.fontbureau.com/designers8
http://www.galapagosdesign.com/:
http://www.jiyu-kobo.co.jp/k
http://www.carterandcone.coml
http://www.jiyu-kobo.co.jp/jp/(
http://www.fontbureau.comtk
http://www.jiyu-kobo.co.jp/r
http://www.fontbureau.comFr
http://www.fontbureau.com/designers/frere-user.html
http://www.founder.com.cn/cn
http://www.fontbureau.comk
http://www.zhongyicts.com.cnar
http://www.fontbureau.commr
http://www.fontbureau.comasTF
http://www.fontbureau.com/designersh
http://www.zhongyicts.com.cnTC
http://www.typography.netD
http://www.sajatypeworks.com
http://www.fontbureau.comd(
http://www.fontbureau.comFJ
http://www.jiyu-kobo.co.jp/jp/:
http://www.fontbureau.coml1
http://www.carterandcone.com
http://www.goodfont.co.kr
http://www.founder.com.cn/cn/cThe
http://www.fontbureau.com/designers
http://www.tiro.com
http://www.monotype.H
http://www.fontbureau.comuek
http://www.fontbureau.com/designers?
http://www.founder.com.cn/cn/bThe
http://www.fontbureau.com/designers/?
http://www.carterandcone.comgra
http://www.galapagosdesign.com/staff/dennis.htm;
http://www.fontbureau.comcomFr
http://www.jiyu-kobo.co.jp/Y0
http://www.sakkal.com
http://www.zhongyicts.com.cn
http://www.urwpp.deDPlease
http://www.sandoll.co.kr
http://www.fonts.com
http://www.fontbureau.comrsiv
http://www.jiyu-kobo.co.jp/(
http://www.fontbureau.com/designersv
http://www.ascendercorp.com/typedesigners.html
http://www.jiyu-kobo.co.jp/Y0/r
http://www.fontbureau.com/designersG
http://www.jiyu-kobo.co.jp/)
http://www.galapagosdesign.com/DPlease
http://www.jiyu-kobo.co.jp/jp/k
http://www.fontbureau.comcomFJ
http://www.fontbureau.comcom
http://en.wi
http://fontfabrik.com
http://www.galapagosdesign.com/staff/dennis.htm
http://www.jiyu-kobo.co.jp/:

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\FJRxMHNxKr.exe.log
 ASCII text, with CRLF line terminators
 #