File MD5Sum | SHA1SUM | SHA256SUM | FUZZY HASH | File Size |
---|---|---|---|---|
f16390927146cb8e103df6873a284a84 | 36bf9d6fb721d956dbe2603bc06f8b94de44893a | 04dedbe6199b94b7a121a67f4cf419257a6efe0e21f3e6caa10105a5f7975f64 | 768:ROhlvI5QKedEGn9qeNXalsFHp1fDaAL7X07dsYmTCknHq4OXxAiTqF6:ROhijynylifDaAX07dsY | 65024 |
File Name |
---|
setup1.exe |
Snort Class | Snort Alert | Count |
---|---|---|
N/A | No snort alerts generated | 0 |
AV Alert | AV Vendor |
---|---|
Trojan.Gen | Symantec |
W32/Bamital.g | McAfee |
Trojan.Win32.Diple.ifq | Kaspersky |
N/A | Symantec |
Path | Folder Name |
---|
Action | Path | File Name |
---|
Action | Path |
---|
Action | Path | Val_Name | Val_Data |
---|
Action | Path | Val_Name | Val_Type | Mod_Val_Type | Val_Data | Mod_Val_Data |
---|
Action | Path | Val_Name | Val_Data | Mod_Val_Data |
---|---|---|---|---|
modified | HKLM/SOFTWARE/Microsoft/Cryptography/RNG | Seed | B7 84 E0 8A CE 3F 15 10 4A FB 20 11 98 BD 9C 2E 4C 4B 4C C9 52 FF F9 BD 20 14 93 | D2 23 96 05 E2 99 73 7A B8 F5 92 F6 B0 56 76 43 1D 0D 31 F7 60 F6 D5 14 8E 87 D |
modified | HKU/S-1-5-21-1844237615-562591055-839522115-1004/SessionInformation | ProgramCount | 0x00000002 | 0x00000001 |
DNS | DNS Response |
---|
DstIP | HTTP_HOST | HTTP_REQUEST_URI | HTTP_USER_AGENT | PROTOCOL |
---|
PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|
DPORT | PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|
Time | Date | Protocol | SrcIP | DstIP | Dir | Flags | Sport | Dport | Pkts | Bytes |
---|
Packer Name |
---|
Honey Trap Log File Location |
---|
PTFB Log File Location |
---|