Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
Deep Malware Analysis
top title background image
flash

93wwn6bqKe.exe

Status: finished
Submission Time: 2020-08-21 03:12:15 +02:00
Malicious
Ransomware
Netwalker

Comments

Tags

  • Netwalker

Details

  • Analysis ID:
    274027
  • API (Web) ID:
    442975
  • Analysis Started:
    2020-08-22 08:30:42 +02:00
  • Analysis Finished:
    2020-08-22 08:38:44 +02:00
  • MD5:
    ab8d59aba3dc3c4be755255eca51d879
  • SHA1:
    24d2abc132f1337f3bf2dd582efb00e5ac911161
  • SHA256:
    46dbb7709411b1429233e0d8d33a02cccd54005a2b4015dcfa8a890252177df9
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
malicious
Full Report Management Report IOC Report
malicious
Score: 76
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01

Third Party Analysis Engines

Open Full Report
malicious
Score: 52/71
Open Full Report
malicious
Score: 25/37
malicious
Score: 28/31
malicious

URLs

Name Detection
http://bot.whatismyipaddress.com
http://standards.iso.org/iso/19770/-2/2009/schema.xsd
http://www.autoitscript.com/site/autoit/
Click to see the 38 hidden entries
http://www.autoitscript.com/site
https://api.ipify.org
https://www.autoitscript.com/autoit3/docs/intro/au3check.htm
http://www.myexternalip.com/raw
https://www.autoitscript.com/autoit3/docs/keywords.htm
http://dmd-ca-beta2/CertEnroll/dmd-ca-beta2_Microsoft%20Digital%20Media%20Authority%202005.crt0d
http://www.youtube.com/
http://www.trackip.net/ip
https://www.autoitscript.com/autoit3/scite/docs/AutoIt3Wrapper.html
http://icanhazip.com
https://www.autoitscript.com/autoit3/docs/keywords/
http://whatthehellismyip.com/?ipraw
http://wtfismyip.com/text
http://www.AutoItScript.com
http://www.reddit.com/
http://dmd-ca-beta2/CertEnroll/Microsoft%20Digital%20Media%20Authority%202005.crl
http://www.autoitscript.com/autoit3/docs/
http://www.bearcave.com/random_hacks/permute.html
https://www.autoitscript.com/autoit3/docs/functions/
http://ip.jsontest.com/
http://www.autoit.de/index.php?page=Thread&postID=48393
https://www.autoitscript.com/autoit3/docs/macros.htm#
http://services.packetizer.com/ipaddress/?f=text
http://www.autoitscript.com/favicon.ico
http://www.nytimes.com/
https://www.autoitscript.com/autoit3/docs/libfunctions/_
http://dbforums.com/t867088.html
http://www.networksecuritytoolkit.org/nst/tools/ip.php
http://ip.appspot.com
http://www.gwspikval.com/jooel/scripts/BBCodeParser/Older%20versions/2.0.1/BBCodeParser2.kix
https://www.autoitscript.com
http://www.autoitscript.com/autoit3/docs/functions/
http://ip.eprci.net/text
http://checkip.dyndns.org
http://corz.org/ip
http://www.telize.com/ip
https://www.autoitscript.com/autoit3/docs/appendix/SendKeys.htm#KeysList
https://www.autoitscript.com/autoit3/docs/keywords/comments-start.htm

Dropped files

No malicious files found. See full and IOC report for all dropped files.