File: 04fb0ccf3ef309b1cd587f609ab0e81e

Metadata
File name:993d14d00b1463519fea78ca65d8529663f487cd76b67b3fd35440bcdf7a8e31.exe
File type:PE32 executable (GUI) Intel 80386, for MS Windows
File size:17408
Analysis date:2019-08-08 11:42:13
MD5:04fb0ccf3ef309b1cd587f609ab0e81e
SHA1:44260a1dfd92922a621124640015160e621f32d5
SHA256:993d14d00b1463519fea78ca65d8529663f487cd76b67b3fd35440bcdf7a8e31
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
APTNotes
Cyber threat intelligence reports associated with 04fb0ccf3ef309b1cd587f609ab0e81e.
Loading...
Domains
Domains the malware sample communicates with.
DomainIP
dump.gxxservice.comN/A
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
ALYacTrojan.ShadowHammer.A
APEXMalicious
AVGWin32:Malware-gen
Acronissuspicious
Ad-AwareTrojan.GenericKD.41245122
AegisLabTrojan.Win32.ShadowHammer.4!c
AhnLab-V3Trojan/Win32.Agent.C2850978
AlibabaTrojan:Win32/Cipduk.1ec0e32a
ArcabitTrojan.Generic.D27559C2
AvastWin32:Malware-gen
AviraTR/Crypt.XPACK.Gen
BitDefenderTrojan.GenericKD.41245122
CAT-QuickHealTrojan.Cipduk
ComodoMalware@#1kjyl2k4uj3w0
CrowdStrikewin/malicious_confidence_100% (W)
Cybereasonmalicious.f3ef30
CyrenW32/Trojan.PDFN-7112
DrWebTrojan.Crackshot.1
ESET-NOD32a variant of Win32/Winnti.AG
EmsisoftTrojan.GenericKD.41245122 (B)
Endgamemalicious (high confidence)
F-SecureTrojan.TR/Crypt.XPACK.Gen
FireEyeGeneric.mg.04fb0ccf3ef309b1
FortinetW32/Winnti.AG!tr
GDataTrojan.GenericKD.41245122
IkarusTrojan.Win32.Winnti
Invinceaheuristic
JiangminTrojan.ShadowHammer.h
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
KasperskyHEUR:Trojan.Win32.ShadowHammer.gen
MAXmalware (ai score=99)
McAfeeTrojan-Winnti
McAfee-GW-EditionBehavesLike.Win32.Downloader.lm
MicroWorld-eScanTrojan.GenericKD.41245122
MicrosoftTrojan:Win32/Cipduk.C!dha
NANO-AntivirusTrojan.Win32.ShadowHammer.fpokod
Paloaltogeneric.ml
PandaTrj/GdSda.A
Qihoo-360Win32/Trojan.6fa
Rising[email protected] (RDMK:aOz65L0og6m2nJz4M06pXA)
SentinelOneDFI - Malicious PE
SophosMal/Generic-S
SymantecTrojan Horse
TrendMicroBackdoor.Win32.SHADOWHAMMER.ENF
TrendMicro-HouseCallBackdoor.Win32.SHADOWHAMMER.ENF
VBA32BScope.Trojan.ShadowHammer
VIPRETrojan.Win32.Generic!BT
YandexTrojan.ShadowHammer!
ZillyaTrojan.ShadowHammer.Win32.14
ZoneAlarmHEUR:Trojan.Win32.ShadowHammer.gen
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about 04fb0ccf3ef309b1cd587f609ab0e81e.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.