Automated Malware Analysis IOC Report for

Details

Filetype:	PE32 executable (console) Intel 80386, for MS Windows
Entropy:	0.7264836086625004
Filename:	O0dZdy12ak.exe
Filesize:	6670336
MD5:	38fb9ac2e51d04182faf81afbef08ab8
SHA1:	1f325950a7a8e1a2050e954f33d2c3774510bd6e
SHA256:	1363c8871061ff83ed3dd0fe025b274442d5c30898c02bdfd4981717f4f33b44
SHA512:	8af5062d6d133379b0ad87439cdf99fc98bff266f03c0a831f84c0c41224c7a97e8e0a5583e8d4b24c04edd0bc6099646ebea3388ffe2fe7917b709604e63406
SSDEEP:	6144:iODh8y70MgJ+j2ZsKmj82uGBOOGHO0GL2g6VzxazESJx2sYMLoI4H4voKJ+QtDeJ:ik70MZMc0RdQtzH8lhwFbZgaOm
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$...................................?...........................]r......]r......]r......mq......mqq.....mq......Rich...................

Signature Hits	Behavior Group	Mitre Attack
Multi AV Scanner detection for submitted file	AV Detection
Excessive usage of taskkill to terminate processes	HIPS / PFW / Operating System Protection Evasion
Modifies existing user documents (likely ransomware behavior)	Spam, unwanted Advertisements and Ransom Demands	Data Encrypted for Impact
Checks for available system drives (often done to infect USB drives)	Spreading	Replication Through Removable Media Peripheral Device Discovery
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)	Malware Analysis System Evasion
May sleep (evasive loops) to hinder dynamic analysis	Malware Analysis System Evasion
Sleep loop found (likely to delay execution)	Malware Analysis System Evasion	Virtualization/Sandbox Evasion
Uses 32bit PE files	Compliance, System Summary	Masquerading
Uses taskkill to terminate processes	HIPS / PFW / Operating System Protection Evasion	Disable or Modify Tools
Creates files inside the user directory	System Summary	Masquerading
Creates temporary files	System Summary
PE file has an executable .text section and no other executable section	System Summary
Reads ini files	System Summary	File and Directory Discovery
Reads software policies	System Summary
Sample is known by Antivirus	System Summary
Sample reads its own file content	System Summary
Tries to load missing DLLs	System Summary	DLL Side-Loading
URLs found in memory or binary data	Networking
PE file contains a debug data directory	System Summary
PE file has a big raw section	System Summary
Submission file is bigger than most known malware samples	System Summary
Found GUI installer (many successful clicks)	System Summary

Details

File:	C:\Users\user\Desktop\O0dZdy12ak.exe.invisible
Category:	dropped
Dump:	O0dZdy12ak.exe.invisible.0.dr
ID:	dr_18
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	1.8144918431201122
Encrypted:	false
Ssdeep:	24576:/pMJWw0bITXB6Wb5tdV3yWHDDWrbQzzH57sFqgvc:hMJ6bAB6WndV3yYDWrbQ/H57sFqg0
Size:	6671388
Whitelisted:	false
Reputation:	timeout

Signature Hits	Behavior Group	Mitre Attack
Multi AV Scanner detection for submitted file	AV Detection
Excessive usage of taskkill to terminate processes	HIPS / PFW / Operating System Protection Evasion	Disable or Modify Tools
Modifies existing user documents (likely ransomware behavior)	Spam, unwanted Advertisements and Ransom Demands	Data Encrypted for Impact
Checks for available system drives (often done to infect USB drives)	Spreading	Replication Through Removable Media Peripheral Device Discovery
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)	Malware Analysis System Evasion
Sleep loop found (likely to delay execution)	Malware Analysis System Evasion	Virtualization/Sandbox Evasion
Uses 32bit PE files	Compliance, System Summary
Uses taskkill to terminate processes	HIPS / PFW / Operating System Protection Evasion	Disable or Modify Tools
Creates files inside the user directory	System Summary	Masquerading
Creates temporary files	System Summary
PE file has an executable .text section and no other executable section	System Summary
Reads ini files	System Summary	File and Directory Discovery
Reads software policies	System Summary	System Information Discovery
Sample is known by Antivirus	System Summary
Sample reads its own file content	System Summary
Spawns processes	System Summary	Process Injection
Tries to load missing DLLs	System Summary	DLL Side-Loading
PE file contains a debug data directory	System Summary
PE file has a big raw section	System Summary
Submission file is bigger than most known malware samples	System Summary
Found GUI installer (many successful clicks)	System Summary

Details

File:	C:\Users\Public\Documents\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible16.0.dr
ID:	dr_95
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.448279124740771
Encrypted:	false
Ssdeep:	24:5+qQi8D5FMtO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:HeF8ld5X2xS6GP5YdVmgIB1c6twg
Size:	1340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\Public\Downloads\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible17.0.dr
ID:	dr_96
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.039629203236064
Encrypted:	false
Ssdeep:	24:5+qQi8DKtO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:Hvld5X2xS6GP5YdVmgIB1c6twg
Size:	1228
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\Public\Music\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible18.0.dr
ID:	dr_98
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.740437791997142
Encrypted:	false
Ssdeep:	24:5+qQi8DtnwrQPnSg9tO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:H2pNTld5X2xS6GP5YdVmgIB1c6twg
Size:	1436
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\Public\Pictures\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible19.0.dr
ID:	dr_100
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.717512825104021
Encrypted:	false
Ssdeep:	24:5+qQi8D3pQIeKjtO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:H+ld5X2xS6GP5YdVmgIB1c6twg
Size:	1436
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\Public\Videos\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible20.0.dr
ID:	dr_102
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.742717228659507
Encrypted:	false
Ssdeep:	24:5+qQi8DYxJN72mytO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:HTJTqld5X2xS6GP5YdVmgIB1c6twg
Size:	1436
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\Public\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible15.0.dr
ID:	dr_94
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.023633635880275
Encrypted:	false
Ssdeep:	24:5+qQi8DctO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:Htld5X2xS6GP5YdVmgIB1c6twg
Size:	1228
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible6.0.dr
ID:	dr_23
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.041988433090257
Encrypted:	false
Ssdeep:	24:vnKL1Se4ys33YwTgnjRCokafqQAPE2sMxo+tigfwXd/D4vd9olt:fA1SPcj+yM0uo+ggfid/kvr8
Size:	1228
Whitelisted:	false
Reputation:	timeout

Signature Hits	Behavior Group	Mitre Attack
Creates files inside the user directory	System Summary	Masquerading

Details

File:	C:\Users\user\.curlrc.invisible
Category:	dropped
Dump:	.curlrc.invisible.0.dr
ID:	dr_24
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.246177039902789
Encrypted:	false
Ssdeep:	24:wys33YwTgnjRCokafqQAPE2sMxo+tigfwXd/D4vd9olt:Ccj+yM0uo+ggfid/kvr8
Size:	1068
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\3D Objects\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible7.0.dr
ID:	dr_25
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.496146261366631
Encrypted:	false
Ssdeep:	24:vnKL1SeExKJbkq+DQq7ys33YwTgnjRCokafqQAPE2sMxo+tigfwXd/D4vd9olt:fA1SvKJbZ+kqrcj+yM0uo+ggfid/kvr8
Size:	1356
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\AppData\Local\Temp\tmp.bmp
Category:	dropped
Dump:	tmp.bmp.0.dr
ID:	dr_22
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	PC bitmap, Windows 3.x format, 1920 x 1080 x 24, image size 6220800, cbSize 6220854, bits offset 54
Entropy:	0.023659002560192918
Encrypted:	false
Ssdeep:	768:1MJWWWWW19999999999999TsDFo99999999999990:1MJWWWWWUDFt
Size:	6220854
Whitelisted:	false
Reputation:	timeout

Signature Hits	Behavior Group	Mitre Attack
Creates temporary files	System Summary

Details

File:	C:\Users\user\AppData\Roaming\time.dat
Category:	dropped
Dump:	time.dat.0.dr
ID:	dr_33
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	ASCII text, with no line terminators
Entropy:	2.321928094887362
Encrypted:	false
Ssdeep:	3:LQ:k
Size:	5
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Contacts\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible8.0.dr
ID:	dr_26
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.831528406544157
Encrypted:	false
Ssdeep:	24:vnKL1SGKgmp7ouJfPKQNFHXys33YwTgnjRCokafqQAPE2sMxo+tigfwXd/D4vd98:fA1SGgpzRyKcj+yM0uo+ggfid/kvr8
Size:	1468
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\DVWHKMNFNN.png.invisible
Category:	dropped
Dump:	DVWHKMNFNN.png.invisible.0.dr
ID:	dr_28
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.790107881681686
Encrypted:	false
Ssdeep:	48:Bor2qgOsTfm/iOoYi0uG2Lk6cj+yM0uo+ggfid/kvr8:BorEO9/zohpkdjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\Excel.lnk.invisible
Category:	dropped
Dump:	Excel.lnk.invisible.0.dr
ID:	dr_29
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.036910774055983
Encrypted:	false
Ssdeep:	48:yen5BGGJ8uUaMl9xLUEyYudCMOXudSdMh0+jW7AjjvAlcj+yM0uo+ggfid/kvr8:r5BGZjY0G4uPh0+jpNjS0uYtsvw
Size:	3507
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\HTAGVDFUIE.jpg.invisible
Category:	dropped
Dump:	HTAGVDFUIE.jpg.invisible.0.dr
ID:	dr_10
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.758124410454681
Encrypted:	false
Ssdeep:	48:QzlLHBADdR3dmZ6Dcj+yM0uo+ggfid/kvr8:QJLHBGTIMAjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\HTAGVDFUIE.xlsx.invisible
Category:	dropped
Dump:	HTAGVDFUIE.xlsx.invisible.0.dr
ID:	dr_12
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.758124410454681
Encrypted:	false
Ssdeep:	48:QzlLHBADdR3dmZ6Dcj+yM0uo+ggfid/kvr8:QJLHBGTIMAjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\KATAXZVCPS.pdf.invisible
Category:	dropped
Dump:	KATAXZVCPS.pdf.invisible.0.dr
ID:	dr_14
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7562863158460065
Encrypted:	false
Ssdeep:	48:AOIQdnV/LzmMWhV96XYM3cj+yM0uo+ggfid/kvr8:AOBdnV//mMWhypsjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\KZWFNRXYKI.png.invisible
Category:	dropped
Dump:	KZWFNRXYKI.png.invisible.0.dr
ID:	dr_15
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.792810026564507
Encrypted:	false
Ssdeep:	48:MheDbA5QPUOJIdUEEcj+yM0uo+ggfid/kvr8:ueDb13IdtvjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\LTKMYBSEYZ.mp3.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.mp3.invisible.0.dr
ID:	dr_16
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.75578737172799
Encrypted:	false
Ssdeep:	48:5DjMG/OCpPktKaUjvetRcj+yM0uo+ggfid/kvr8:5D4etqtk+mjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\LTKMYBSEYZ.pdf.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.pdf.invisible.0.dr
ID:	dr_17
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.75578737172799
Encrypted:	false
Ssdeep:	48:5DjMG/OCpPktKaUjvetRcj+yM0uo+ggfid/kvr8:5D4etqtk+mjS0uYtsvw
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN.docx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.docx.invisible0.0.dr
ID:	dr_34
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.743935521855639
Encrypted:	false
Ssdeep:	24:RHsktPUO0AABMubS6Cmd6V2NdVRYA/ZqCARyKXIFkmmtlEcOzhVUi25LvU/QoiqF:iktPUOCGAS6Cmd6VqR5O4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN.xlsx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.xlsx.invisible.0.dr
ID:	dr_35
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.743935521855639
Encrypted:	false
Ssdeep:	24:RHsktPUO0AABMubS6Cmd6V2NdVRYA/ZqCARyKXIFkmmtlEcOzhVUi25LvU/QoiqF:iktPUOCGAS6Cmd6VqR5O4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\HTAGVDFUIE.xlsx.invisible
Category:	dropped
Dump:	HTAGVDFUIE.xlsx.invisible0.0.dr
ID:	dr_19
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.757772660224696
Encrypted:	false
Ssdeep:	24:7vstZI2Tb3fBijGk4WKeQZkMJ9m/7v1HV0fdCARyKXIFkmmtlEcOzhVUi25LvU/P:YZIo3dXejMJ9I7d10fR4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\KZWFNRXYKI.png.invisible
Category:	dropped
Dump:	KZWFNRXYKI.png.invisible0.0.dr
ID:	dr_20
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.753095586531855
Encrypted:	false
Ssdeep:	48:okYXTpLeq3rS+7R8I9Uq74FLLh8CiBy1D:oksTpLep+V1aq7uLLh83iD
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\LTKMYBSEYZ.pdf.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.pdf.invisible0.0.dr
ID:	dr_21
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.773150220444779
Encrypted:	false
Ssdeep:	24:A8UXHuZhG6AKYt6KRLn7SUEbfM+zKtJ9cL3SwIZCARyKXIFkmmtlEcOzhVUi25L0:bBs6KBmbEdJwi9l4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\UMMBDNEQBN.docx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.docx.invisible.0.dr
ID:	dr_30
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.743935521855639
Encrypted:	false
Ssdeep:	24:RHsktPUO0AABMubS6Cmd6V2NdVRYA/ZqCARyKXIFkmmtlEcOzhVUi25LvU/QoiqF:iktPUOCGAS6Cmd6VqR5O4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\WUTJSCBCFX.jpg.invisible
Category:	dropped
Dump:	WUTJSCBCFX.jpg.invisible.0.dr
ID:	dr_31
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.768289943014402
Encrypted:	false
Ssdeep:	48:VMuGYya1C8U3wgikyPEJYqa0m4FLLh8CiBy1D:VMuGYyMCF3RLNmuLLh83iD
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\UMMBDNEQBN\ZBEDCJPBEY.mp3.invisible
Category:	dropped
Dump:	ZBEDCJPBEY.mp3.invisible.0.dr
ID:	dr_32
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.770540904821082
Encrypted:	false
Ssdeep:	48:XqjvffWk4X2wxizKnXa9OJKDbFOnjDgNCUoA3VVb4FLLh8CiBy1D:ajvt4X2wxizXUKOnoNCUosTuLLh83iD
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ.docx.invisible
Category:	dropped
Dump:	VLZDGUKUTZ.docx.invisible0.0.dr
ID:	dr_42
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.757159234100293
Encrypted:	false
Ssdeep:	24:odvs75mYmYvPI4AdsIILn4yBDGsmBJMtsJP2CARyKXIFkmmtlEcOzhVUi25LvU/P:oz/Yvw4pIIz3DG7BJHPk4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\DVWHKMNFNN.png.invisible
Category:	dropped
Dump:	DVWHKMNFNN.png.invisible0.0.dr
ID:	dr_36
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7456656200028595
Encrypted:	false
Ssdeep:	24:ychOqUh0lw1qsL5yA3bz2AYH7j1FBz3zjlQ8YFbCARyKXIFkmmtlEcOzhVUi25L0:Rxdyqs9yUix17jl2N4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\HTAGVDFUIE.jpg.invisible
Category:	dropped
Dump:	HTAGVDFUIE.jpg.invisible0.0.dr
ID:	dr_37
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.757772660224696
Encrypted:	false
Ssdeep:	24:7vstZI2Tb3fBijGk4WKeQZkMJ9m/7v1HV0fdCARyKXIFkmmtlEcOzhVUi25LvU/P:YZIo3dXejMJ9I7d10fR4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\KATAXZVCPS.pdf.invisible
Category:	dropped
Dump:	KATAXZVCPS.pdf.invisible0.0.dr
ID:	dr_38
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.74164538654264
Encrypted:	false
Ssdeep:	48:a3hrnDm9b9jIhKt9RZUHzDSfFT4FLLh8CiBy1D:a3JG9jIhEXZKzDSftuLLh83iD
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\LTKMYBSEYZ.mp3.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.mp3.invisible0.0.dr
ID:	dr_39
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.773150220444779
Encrypted:	false
Ssdeep:	24:A8UXHuZhG6AKYt6KRLn7SUEbfM+zKtJ9cL3SwIZCARyKXIFkmmtlEcOzhVUi25L0:bBs6KBmbEdJwi9l4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\UMMBDNEQBN.xlsx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.xlsx.invisible0.0.dr
ID:	dr_40
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.743935521855639
Encrypted:	false
Ssdeep:	24:RHsktPUO0AABMubS6Cmd6V2NdVRYA/ZqCARyKXIFkmmtlEcOzhVUi25LvU/QoiqF:iktPUOCGAS6Cmd6VqR5O4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\VLZDGUKUTZ\VLZDGUKUTZ.docx.invisible
Category:	dropped
Dump:	VLZDGUKUTZ.docx.invisible.0.dr
ID:	dr_41
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.757159234100293
Encrypted:	false
Ssdeep:	24:odvs75mYmYvPI4AdsIILn4yBDGsmBJMtsJP2CARyKXIFkmmtlEcOzhVUi25LvU/P:oz/Yvw4pIIz3DG7BJHPk4FLLh8CiBy1D
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\WUTJSCBCFX.jpg.invisible
Category:	dropped
Dump:	WUTJSCBCFX.jpg.invisible0.0.dr
ID:	dr_43
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.739345339658692
Encrypted:	false
Ssdeep:	48:RNZVWWVLXsTlvD6RGFEqCSpDMY/wQyMuqWS/Fyd:bZ+o05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\ZBEDCJPBEY.mp3.invisible
Category:	dropped
Dump:	ZBEDCJPBEY.mp3.invisible0.0.dr
ID:	dr_44
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.791912492866249
Encrypted:	false
Ssdeep:	48:O7cPpYVB+6nTHJ8X0rN0MtQbmyzvD6RGFEqCSpDMY/wQyMuqWS/Fyd:4D9w0B02gmh05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Desktop\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible9.0.dr
ID:	dr_27
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.435264549850712
Encrypted:	false
Ssdeep:	24:vnKL1SeQE58Sys33YwTgnjRCokafqQAPE2sMxo+tigfwXd/D4vd9olt:fA1Sf9Mcj+yM0uo+ggfid/kvr8
Size:	1340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\DVWHKMNFNN.png.invisible
Category:	dropped
Dump:	DVWHKMNFNN.png.invisible1.0.dr
ID:	dr_46
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.735270247216449
Encrypted:	false
Ssdeep:	48:FUgAieg1Sfybh+nvsvD6RGFEqCSpDMY/wQyMuqWS/Fyd:ugj194vP05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\HTAGVDFUIE.jpg.invisible
Category:	dropped
Dump:	HTAGVDFUIE.jpg.invisible1.0.dr
ID:	dr_47
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.73525225632051
Encrypted:	false
Ssdeep:	48:1g3tnYlLTpLyjPq1Y0evD6RGFEqCSpDMY/wQyMuqWS/Fyd:m9nYlLThyO1705EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\HTAGVDFUIE.xlsx.invisible
Category:	dropped
Dump:	HTAGVDFUIE.xlsx.invisible1.0.dr
ID:	dr_48
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.73525225632051
Encrypted:	false
Ssdeep:	48:1g3tnYlLTpLyjPq1Y0evD6RGFEqCSpDMY/wQyMuqWS/Fyd:m9nYlLThyO1705EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\KATAXZVCPS.pdf.invisible
Category:	dropped
Dump:	KATAXZVCPS.pdf.invisible1.0.dr
ID:	dr_49
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7589269588471765
Encrypted:	false
Ssdeep:	48:k3imBcTY3icJGkIFJfZBwCM/1ivD6RGFEqCSpDMY/wQyMuqWS/Fyd:k3im8Y3iIqJfPAdV05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\KZWFNRXYKI.png.invisible
Category:	dropped
Dump:	KZWFNRXYKI.png.invisible1.0.dr
ID:	dr_50
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7489055661583075
Encrypted:	false
Ssdeep:	48:C99Gu8MD0AW5IMTJyqvD6RGFEqCSpDMY/wQyMuqWS/Fyd:CGLAqIMTJK05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\LTKMYBSEYZ.mp3.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.mp3.invisible1.0.dr
ID:	dr_51
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.777764305457684
Encrypted:	false
Ssdeep:	48:GjBMcfpgYRSv3E37MgDI2jCeXuvD6RGFEqCSpDMY/wQyMuqWS/Fyd:I9fpTRfLM7eXB05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\LTKMYBSEYZ.pdf.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.pdf.invisible1.0.dr
ID:	dr_52
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.777764305457684
Encrypted:	false
Ssdeep:	48:GjBMcfpgYRSv3E37MgDI2jCeXuvD6RGFEqCSpDMY/wQyMuqWS/Fyd:I9fpTRfLM7eXB05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN.docx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.docx.invisible2.0.dr
ID:	dr_59
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756834480322971
Encrypted:	false
Ssdeep:	48:hu6e64gvyo7CRaifStNNuwvD6RGFEqCSpDMY/wQyMuqWS/Fyd:Ne9gvyo7CRabb+05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN.xlsx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.xlsx.invisible1.0.dr
ID:	dr_60
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756834480322971
Encrypted:	false
Ssdeep:	48:hu6e64gvyo7CRaifStNNuwvD6RGFEqCSpDMY/wQyMuqWS/Fyd:Ne9gvyo7CRabb+05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\HTAGVDFUIE.xlsx.invisible
Category:	dropped
Dump:	HTAGVDFUIE.xlsx.invisible2.0.dr
ID:	dr_53
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.73525225632051
Encrypted:	false
Ssdeep:	48:1g3tnYlLTpLyjPq1Y0evD6RGFEqCSpDMY/wQyMuqWS/Fyd:m9nYlLThyO1705EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\KZWFNRXYKI.png.invisible
Category:	dropped
Dump:	KZWFNRXYKI.png.invisible2.0.dr
ID:	dr_54
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7489055661583075
Encrypted:	false
Ssdeep:	48:C99Gu8MD0AW5IMTJyqvD6RGFEqCSpDMY/wQyMuqWS/Fyd:CGLAqIMTJK05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\LTKMYBSEYZ.pdf.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.pdf.invisible2.0.dr
ID:	dr_55
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.777764305457684
Encrypted:	false
Ssdeep:	48:GjBMcfpgYRSv3E37MgDI2jCeXuvD6RGFEqCSpDMY/wQyMuqWS/Fyd:I9fpTRfLM7eXB05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\UMMBDNEQBN.docx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.docx.invisible1.0.dr
ID:	dr_56
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756834480322971
Encrypted:	false
Ssdeep:	48:hu6e64gvyo7CRaifStNNuwvD6RGFEqCSpDMY/wQyMuqWS/Fyd:Ne9gvyo7CRabb+05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\WUTJSCBCFX.jpg.invisible
Category:	dropped
Dump:	WUTJSCBCFX.jpg.invisible1.0.dr
ID:	dr_57
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.739345339658692
Encrypted:	false
Ssdeep:	48:RNZVWWVLXsTlvD6RGFEqCSpDMY/wQyMuqWS/Fyd:bZ+o05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\UMMBDNEQBN\ZBEDCJPBEY.mp3.invisible
Category:	dropped
Dump:	ZBEDCJPBEY.mp3.invisible1.0.dr
ID:	dr_58
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.791912492866249
Encrypted:	false
Ssdeep:	48:O7cPpYVB+6nTHJ8X0rN0MtQbmyzvD6RGFEqCSpDMY/wQyMuqWS/Fyd:4D9w0B02gmh05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ.docx.invisible
Category:	dropped
Dump:	VLZDGUKUTZ.docx.invisible2.0.dr
ID:	dr_67
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756290623300287
Encrypted:	false
Ssdeep:	48:P8cXZLV3WGs24Uf3bJ6vD6RGFEqCSpDMY/wQyMuqWS/Fyd:P8OVmGs24UfFd05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\DVWHKMNFNN.png.invisible
Category:	dropped
Dump:	DVWHKMNFNN.png.invisible2.0.dr
ID:	dr_61
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.735270247216449
Encrypted:	false
Ssdeep:	48:FUgAieg1Sfybh+nvsvD6RGFEqCSpDMY/wQyMuqWS/Fyd:ugj194vP05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\HTAGVDFUIE.jpg.invisible
Category:	dropped
Dump:	HTAGVDFUIE.jpg.invisible2.0.dr
ID:	dr_62
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.73525225632051
Encrypted:	false
Ssdeep:	48:1g3tnYlLTpLyjPq1Y0evD6RGFEqCSpDMY/wQyMuqWS/Fyd:m9nYlLThyO1705EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\KATAXZVCPS.pdf.invisible
Category:	dropped
Dump:	KATAXZVCPS.pdf.invisible2.0.dr
ID:	dr_63
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.7589269588471765
Encrypted:	false
Ssdeep:	48:k3imBcTY3icJGkIFJfZBwCM/1ivD6RGFEqCSpDMY/wQyMuqWS/Fyd:k3im8Y3iIqJfPAdV05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\LTKMYBSEYZ.mp3.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.mp3.invisible2.0.dr
ID:	dr_64
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.777764305457684
Encrypted:	false
Ssdeep:	48:GjBMcfpgYRSv3E37MgDI2jCeXuvD6RGFEqCSpDMY/wQyMuqWS/Fyd:I9fpTRfLM7eXB05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\UMMBDNEQBN.xlsx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.xlsx.invisible2.0.dr
ID:	dr_65
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756834480322971
Encrypted:	false
Ssdeep:	48:hu6e64gvyo7CRaifStNNuwvD6RGFEqCSpDMY/wQyMuqWS/Fyd:Ne9gvyo7CRabb+05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\VLZDGUKUTZ\VLZDGUKUTZ.docx.invisible
Category:	dropped
Dump:	VLZDGUKUTZ.docx.invisible1.0.dr
ID:	dr_66
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756290623300287
Encrypted:	false
Ssdeep:	48:P8cXZLV3WGs24Uf3bJ6vD6RGFEqCSpDMY/wQyMuqWS/Fyd:P8OVmGs24UfFd05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\WUTJSCBCFX.jpg.invisible
Category:	dropped
Dump:	WUTJSCBCFX.jpg.invisible2.0.dr
ID:	dr_68
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.739345339658692
Encrypted:	false
Ssdeep:	48:RNZVWWVLXsTlvD6RGFEqCSpDMY/wQyMuqWS/Fyd:bZ+o05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\ZBEDCJPBEY.mp3.invisible
Category:	dropped
Dump:	ZBEDCJPBEY.mp3.invisible2.0.dr
ID:	dr_69
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.791912492866249
Encrypted:	false
Ssdeep:	48:O7cPpYVB+6nTHJ8X0rN0MtQbmyzvD6RGFEqCSpDMY/wQyMuqWS/Fyd:4D9w0B02gmh05EYnDFQ
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Documents\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible10.0.dr
ID:	dr_45
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.815694460668385
Encrypted:	false
Ssdeep:	24:4va+HjZZEkOhaFOJeUFLMvDjRo9zGFEqCNWT15D+gnM/Q/wVGdqnnMuqRAFpSZhy:gaGjghasJivD6RGFEqCSpDMY/wQyMuqU
Size:	1468
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\DVWHKMNFNN.png.invisible
Category:	dropped
Dump:	DVWHKMNFNN.png.invisible3.0.dr
ID:	dr_71
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.779898615321339
Encrypted:	false
Ssdeep:	48:putqPpTBos1E6aLnUeW1jvZK7sipIckM6JvFPgIUnBZ:vBxnEnUn+NkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\HTAGVDFUIE.jpg.invisible
Category:	dropped
Dump:	HTAGVDFUIE.jpg.invisible3.0.dr
ID:	dr_72
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.738972645905652
Encrypted:	false
Ssdeep:	48:pOpifFf0CDQer3atM4XupIckM6JvFPgIUnBZ:6idf0CDNagkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\HTAGVDFUIE.xlsx.invisible
Category:	dropped
Dump:	HTAGVDFUIE.xlsx.invisible3.0.dr
ID:	dr_73
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.738972645905652
Encrypted:	false
Ssdeep:	48:pOpifFf0CDQer3atM4XupIckM6JvFPgIUnBZ:6idf0CDNagkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\KATAXZVCPS.pdf.invisible
Category:	dropped
Dump:	KATAXZVCPS.pdf.invisible3.0.dr
ID:	dr_74
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.765881251565534
Encrypted:	false
Ssdeep:	48:pxRLmH7Z6Luw3/sFvbpIckM6JvFPgIUnBZ:nRKbZsEpkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\KZWFNRXYKI.png.invisible
Category:	dropped
Dump:	KZWFNRXYKI.png.invisible3.0.dr
ID:	dr_75
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.791728632741117
Encrypted:	false
Ssdeep:	48:pnkJVtVZ5KudMLVqOEOpIckM6JvFPgIUnBZ:e5KqMgOEOkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\LTKMYBSEYZ.mp3.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.mp3.invisible3.0.dr
ID:	dr_76
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.758519514086432
Encrypted:	false
Ssdeep:	48:pnJ6wjogw0KPSxFZ1mnXnIBCkpIckM6JvFPgIUnBZ:pjngaxTBCkkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\LTKMYBSEYZ.pdf.invisible
Category:	dropped
Dump:	LTKMYBSEYZ.pdf.invisible3.0.dr
ID:	dr_77
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.758519514086432
Encrypted:	false
Ssdeep:	48:pnJ6wjogw0KPSxFZ1mnXnIBCkpIckM6JvFPgIUnBZ:pjngaxTBCkkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\UMMBDNEQBN.docx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.docx.invisible3.0.dr
ID:	dr_78
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.74026515873253
Encrypted:	false
Ssdeep:	48:pjzKF5MdBH4XCKNkKS8+pIckM6JvFPgIUnBZ:NJMokMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\UMMBDNEQBN.xlsx.invisible
Category:	dropped
Dump:	UMMBDNEQBN.xlsx.invisible3.0.dr
ID:	dr_79
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.74026515873253
Encrypted:	false
Ssdeep:	48:pjzKF5MdBH4XCKNkKS8+pIckM6JvFPgIUnBZ:NJMokMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\VLZDGUKUTZ.docx.invisible
Category:	dropped
Dump:	VLZDGUKUTZ.docx.invisible3.0.dr
ID:	dr_80
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756049138704993
Encrypted:	false
Ssdeep:	48:p6+jdNLzZ1osKf+3BO9q9dM/rspIckM6JvFPgIUnBZ:bBlAmxO9qsAkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\WUTJSCBCFX.jpg.invisible
Category:	dropped
Dump:	WUTJSCBCFX.jpg.invisible3.0.dr
ID:	dr_81
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.756874031037042
Encrypted:	false
Ssdeep:	48:pdt8ZuVMjS4EbkyK4erjpIckM6JvFPgIUnBZ:KZuVMpjzJrjkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\ZBEDCJPBEY.mp3.invisible
Category:	dropped
Dump:	ZBEDCJPBEY.mp3.invisible3.0.dr
ID:	dr_82
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.778833245337763
Encrypted:	false
Ssdeep:	48:pypV7uKqqdznvWay7SSYaPpIckM6JvFPgIUnBZ:Ek1qB2VPkMEtPUb
Size:	2078
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Downloads\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible11.0.dr
ID:	dr_70
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.46689212458369
Encrypted:	false
Ssdeep:	24:peMRhC7P9ZXUppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:pbPCF+pIckM6JvFPgIUnBZ
Size:	1340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Amazon.url.invisible
Category:	dropped
Dump:	Amazon.url.invisible.0.dr
ID:	dr_83
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.728604991442226
Encrypted:	false
Ssdeep:	24:p8hJZippqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JQpIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Bing.url.invisible
Category:	dropped
Dump:	Bing.url.invisible.0.dr
ID:	dr_84
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.141904108344026
Encrypted:	false
Ssdeep:	24:p8hJZBuS5FS6lRIOppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JXP7J7LpIckM6JvFPgIUnBZ
Size:	1260
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Facebook.url.invisible
Category:	dropped
Dump:	Facebook.url.invisible.0.dr
ID:	dr_86
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.801053066533228
Encrypted:	false
Ssdeep:	24:p8hJZ5onoppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JniopIckM6JvFPgIUnBZ
Size:	1180
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Google.url.invisible
Category:	dropped
Dump:	Google.url.invisible.0.dr
ID:	dr_87
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.728213136626183
Encrypted:	false
Ssdeep:	24:p8hJZBRppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JfRpIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Links\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible13.0.dr
ID:	dr_88
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.600557913302904
Encrypted:	false
Ssdeep:	24:phSxwHqKxppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:phSxwHvxpIckM6JvFPgIUnBZ
Size:	1132
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Live.url.invisible
Category:	dropped
Dump:	Live.url.invisible.0.dr
ID:	dr_89
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.722866692552745
Encrypted:	false
Ssdeep:	24:p8hJZU3ppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4Jy3pIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\NYTimes.url.invisible
Category:	dropped
Dump:	NYTimes.url.invisible.0.dr
ID:	dr_97
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.739607342100551
Encrypted:	false
Ssdeep:	24:p8hJZgppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JmpIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Reddit.url.invisible
Category:	dropped
Dump:	Reddit.url.invisible.0.dr
ID:	dr_99
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.733814321154805
Encrypted:	false
Ssdeep:	24:p8hJZappqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4J4pIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Twitter.url.invisible
Category:	dropped
Dump:	Twitter.url.invisible.0.dr
ID:	dr_101
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.736620998431472
Encrypted:	false
Ssdeep:	24:p8hJZaLppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JYpIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Wikipedia.url.invisible
Category:	dropped
Dump:	Wikipedia.url.invisible.0.dr
ID:	dr_103
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.799057864269368
Encrypted:	false
Ssdeep:	24:p8hJZHTQJppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JxQJpIckM6JvFPgIUnBZ
Size:	1180
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\Youtube.url.invisible
Category:	dropped
Dump:	Youtube.url.invisible.0.dr
ID:	dr_104
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.734452702925293
Encrypted:	false
Ssdeep:	24:p8hJZ3wppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:p4JSpIckM6JvFPgIUnBZ
Size:	1164
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Favorites\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible12.0.dr
ID:	dr_85
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.829715155460678
Encrypted:	false
Ssdeep:	24:peMRhKFrlZq6zrIEppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:pbP4pZq6zBpIckM6JvFPgIUnBZ
Size:	1468
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Links\Desktop.lnk.invisible
Category:	dropped
Dump:	Desktop.lnk.invisible.0.dr
ID:	dr_106
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.994843203267586
Encrypted:	false
Ssdeep:	24:EScrI2p99+bXD6jF15cKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:ETIw/GDK6INV+a6fXh6RsuRJgBitsr
Size:	1548
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Links\Downloads.lnk.invisible
Category:	dropped
Dump:	Downloads.lnk.invisible.0.dr
ID:	dr_107
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.707848975840419
Encrypted:	false
Ssdeep:	48:E0O6ZcobkmiPXlJ91wbe9INV+a6fXh6RsuRJgBitsr:y9oQm6zsbe9Ij+pXh6Dsqsr
Size:	1996
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Links\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible21.0.dr
ID:	dr_105
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.0491233097232
Encrypted:	false
Ssdeep:	24:peMRhx9VqMuG+cxppqckkHXq+UL0lCPH8eQIPxiwGIgRU3f7wz3VZ:pbPxHqjG+mpIckM6JvFPgIUnBZ
Size:	1564
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Music\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible.0.dr
ID:	dr_0
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.026600584016434
Encrypted:	false
Ssdeep:	24:ElwO2Xt5e9/kGVTRZBJBwMWcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:E6XS3TRZ/PPINV+a6fXh6RsuRJgBitsr
Size:	1564
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TM.blf.invisible
Category:	dropped
Dump:	NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TM.blf.invisible.0.dr
ID:	dr_1
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	1.6653857086371668
Encrypted:	false
Ssdeep:	384:Jg3NfDfS7qPK19tk/lOfhHrOFqYqpkJjPw+:Jg3Nf8qg9tk/4fZcqYqUjx
Size:	66588
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms.invisible
Category:	dropped
Dump:	NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms.invisible.0.dr
ID:	dr_2
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	1.3007380961587913
Encrypted:	false
Ssdeep:	1536:gnhyIMG7YuwPUm/AzWOztHeth9MZWUInJXBs7D0+N3:gSG7YuwPUmIzW0+th9MTAXBIZ3
Size:	525340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms.invisible
Category:	modified
Dump:	NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms.invisible.0.dr
ID:	dr_3
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	1.3005949035989106
Encrypted:	false
Ssdeep:	1536:5mVCfQm8DscM+0FSCLsnhmZRzoSDclJ5H8CNqLnabH:4Iuz0wr4D3DclLUaT
Size:	525340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\OneDrive\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible0.0.dr
ID:	dr_5
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.70064738373586
Encrypted:	false
Ssdeep:	24:EHfTWqJBcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:EHfqqJCINV+a6fXh6RsuRJgBitsr
Size:	1148
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Pictures\Camera Roll\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible1.0.dr
ID:	dr_6
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.105655990551572
Encrypted:	false
Ssdeep:	24:ElwO2XtiVcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:E6XnINV+a6fXh6RsuRJgBitsr
Size:	1244
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Pictures\Saved Pictures\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible3.0.dr
ID:	dr_8
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.1234995579554
Encrypted:	false
Ssdeep:	24:ElwO2Xti4PIcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:E6XJPFINV+a6fXh6RsuRJgBitsr
Size:	1244
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Pictures\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible2.0.dr
ID:	dr_7
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.0360114874587785
Encrypted:	false
Ssdeep:	48:E6XS5+3BfBK46WhQINV+a6fXh6RsuRJgBitsr:HXS5+KaQIj+pXh6Dsqsr
Size:	1564
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Saved Games\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible4.0.dr
ID:	dr_9
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.4328618898269445
Encrypted:	false
Ssdeep:	24:ElwO2Xt5eBbWAScKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:E6XS5jINV+a6fXh6RsuRJgBitsr
Size:	1340
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Searches\Everywhere.search-ms.invisible
Category:	dropped
Dump:	Everywhere.search-ms.invisible.0.dr
ID:	dr_13
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.346368768319604
Encrypted:	false
Ssdeep:	24:EqN8kITncKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:EqN8fTcINV+a6fXh6RsuRJgBitsr
Size:	1308
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Searches\Indexed Locations.search-ms.invisible
Category:	dropped
Dump:	Indexed Locations.search-ms.invisible.0.dr
ID:	dr_90
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	5.3537321803655065
Encrypted:	false
Ssdeep:	24:EqN8kImjFZic36cKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:EqN8fYyc3rINV+a6fXh6RsuRJgBitsr
Size:	1308
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Searches\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible5.0.dr
ID:	dr_11
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.075626810237119
Encrypted:	false
Ssdeep:	24:ElwO2Xt5eQVS7JrDBcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:E6XSQVStruINV+a6fXh6RsuRJgBitsr
Size:	1580
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Searches\winrt--{S-1-5-21-2246122658-3693405117-2476756634-1002}-.searchconnector-ms.invisible
Category:	dropped
Dump:	winrt--{S-1-5-21-2246122658-3693405117-2476756634-1002}-.searchconnector-ms.invisible.0.dr
ID:	dr_91
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.558506609290909
Encrypted:	false
Ssdeep:	48:nxXyXHB+tMe8BvBXc1tOld5X2xS6GP5YdVmgIB1c6twg:xgB+tMekvBXMOlX6womgIBrh
Size:	1916
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\Videos\desktop.ini.invisible
Category:	dropped
Dump:	desktop.ini.invisible14.0.dr
ID:	dr_92
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	6.011618337315646
Encrypted:	false
Ssdeep:	24:5+qQi8D9phdmgk3wiLRQtO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:H07ByGld5X2xS6GP5YdVmgIB1c6twg
Size:	1564
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\_curlrc.invisible
Category:	dropped
Dump:	_curlrc.invisible.0.dr
ID:	dr_93
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.257508163328458
Encrypted:	false
Ssdeep:	24:uMjtO7AeQXR/X22SS6KM1QP5QL9dVZRGzrwIB7i6c6twg:umld5X2xS6GP5YdVmgIB1c6twg
Size:	1068
Whitelisted:	false
Reputation:	timeout

Details

File:	C:\Users\user\ntuser.ini.invisible
Category:	dropped
Dump:	ntuser.ini.invisible.0.dr
ID:	dr_4
Target ID:	0
Process:	C:\Users\user\Desktop\O0dZdy12ak.exe
Type:	data
Entropy:	4.328636168451305
Encrypted:	false
Ssdeep:	24:E3WgcKvNV+6L+DzfPuab96ETksylieJcS4427OmYaifkr:Em9INV+a6fXh6RsuRJgBitsr
Size:	1084
Whitelisted:	false
Reputation:	timeout

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
O0dZdy12ak.exe

Files

Processes

URLs

Memdumps

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC ReportO0dZdy12ak.exe

Files

Processes

URLs

Memdumps

IOC Report
O0dZdy12ak.exe