Submission Summary:


Technical Details:


File System Modifications

#Filename(s)File SizeFile Hash
1 %Temp%\WindowsServices\helper.vbs 352,256 bytes MD5: 0x8BD7641A97E38A73737087FD85EB5AA8
SHA-1: 0xC40FF5A5968232E2783ED455997360BDAE5A30E9
2 %Temp%\WindowsServices\installer.vbs 352,256 bytes MD5: 0xE747A02089FD93865A0766710F8F572E
SHA-1: 0xCB93E00831A14996CCE8ED44013283F46E07D88C
3 %Temp%\WindowsServices\movemenoreg.vbs 393,216 bytes MD5: 0x2C37A25A3CA00D790B01FC83DAC44BE2
SHA-1: 0xBFF5F0A699314C4401D8276649F9B5642BDDEB45
4 [file and pathname of the sample #1] 966,327 bytes MD5: 0xFA85FFD1C54D7003C8580646D3E7DCFD
SHA-1: 0xDC9D7B4E68D502AFF4C116C516E54BC59155BD82



All content ("Information") contained in this report is the copyrighted work of Threat Expert Ltd and its associated companies ("ThreatExpert") and may not be copied without the express permission of ThreatExpert.

The Information is provided on an "as is" basis. ThreatExpert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, ThreatExpert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Copyright © 2018 ThreatExpert. All rights reserved.