File MD5Sum | SHA1SUM | SHA256SUM | FUZZY HASH | File Size |
---|---|---|---|---|
aa627d9b1f802cb4d3d478622886c403 | 2913024b435a07e780481c35eacb3be8fae077a7 | 8ddf2064e18a1e5dd9d97281b2147269bfd0bf72c4a38d149bcd151eeb603c1b | 1536:mJYmSZvSruy5qT1YVqcxE8k5AdT7YufjP8GBqnU538oT5MZ:mJYXyjxhkadT0IjP8GQU53DT5MZ | 77824 |
File Name |
---|
Adobeflash%5FSetup.exe |
Snort Class | Snort Alert | Count |
---|---|---|
N/A | No snort alerts generated | 0 |
AV Alert | AV Vendor |
---|---|
N/A | Symantec |
N/A | McAfee |
N/A | Kaspersky |
Trojan-Banker.Win32.Qhost.mbp | Kaspersky |
Path | Folder Name |
---|
Action | Path | File Name |
---|
Action | Path |
---|
Action | Path | Val_Name | Val_Data |
---|
Action | Path | Val_Name | Val_Type | Mod_Val_Type | Val_Data | Mod_Val_Data |
---|
Action | Path | Val_Name | Val_Data | Mod_Val_Data |
---|---|---|---|---|
modified | HKLM/SOFTWARE/Microsoft/Cryptography/RNG | Seed | 59 1F AD F8 4A 24 E2 18 36 0E 8A AF AA B6 9F 0E E1 52 07 9A 5C 48 33 59 72 79 80 | 06 D5 6B D6 DC CD C2 9B 5B 0F 07 14 61 04 46 5A 3F 10 50 0A 0E 21 50 34 D7 52 5 |
modified | HKU/S-1-5-21-1844237615-562591055-839522115-1004/SessionInformation | ProgramCount | 0x00000002 | 0x00000001 |
DNS | DNS Response |
---|
DstIP | HTTP_HOST | HTTP_REQUEST_URI | HTTP_USER_AGENT | PROTOCOL |
---|
PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|
DPORT | PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|
Time | Date | Protocol | SrcIP | DstIP | Dir | Flags | Sport | Dport | Pkts | Bytes |
---|
Packer Name |
---|
Honey Trap Log File Location |
---|
PTFB Log File Location |
---|