File: b75cc5e0ad70347b3fad6c3e3b6b2bd224ec75e6ea9c906f01b53af58b52f038

Metadata
File name:N/A
File type:N/A
File size:N/A
Analysis date:2016-01-29 21:00:14
MD5:b4ae6966e65e47afa41610b1fb554607
SHA1:443bc2e77b10ae64af6321c2c7bfd311c0772503
SHA256:b75cc5e0ad70347b3fad6c3e3b6b2bd224ec75e6ea9c906f01b53af58b52f038
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
MIME Typeapplication/octet-stream
Linker Version9.0
Uninitialized Data SizeN/A
Initialized Data Size463360
Image Version0.0
File TypeWin32 EXE
File Size1144 kB
Machine TypeIntel 386 or later, and compatibles
Subsystem Version5.0
SubsystemWindows GUI
Code Size152064
OS Version5.0
Entry Point0x1d338
Source:
APTNotes
Cyber threat intelligence reports associated with b75cc5e0ad70347b3fad6c3e3b6b2bd224ec75e6ea9c906f01b53af58b52f038.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
ALYacTrojan.GenericKD.2187917
AVGWin32:CozyDuke-J [Trj]
Ad-AwareTrojan.GenericKD.2187917
AegisLabTrojan.Win32.Cozybear.4!c
AhnLab-V3Trojan/Win32.Cozer.C820329
Antiy-AVLTrojan/Win32.Cozybear
ArcabitTrojan.Generic.D21628D
AvastWin32:CozyDuke-J [Trj]
AviraHEUR/AGEN.1035332
BitDefenderTrojan.GenericKD.2187917
CAT-QuickHealTrojanAPT.CozyDuke.A5
CMCTrojan.Win32.Cozybear!O
ClamAVWin.Dropper.Cozybear-3
CrowdStrikemalicious_confidence_90% (W)
Cybereasonmalicious.6e65e4
CylanceUnsafe
CyrenW32/Trojan.RICH-2071
DrWebBackDoor.CozyDuke.5
ESET-NOD32Win32/TrojanDownloader.Stantinko.Z
EmsisoftTrojan.GenericKD.2187917 (B)
Endgamemalicious (high confidence)
F-SecureTrojan.GenericKD.2187917
FortinetW32/Spy.ADY!tr
GDataTrojan.GenericKD.2187917
IkarusTrojan-Ransom.CryptoLocker
Invinceaheuristic
JiangminTrojan/CozyBear.m
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
KasperskyHEUR:Trojan.Win32.CozyDuke.gen
MAXmalware (ai score=100)
McAfeeGeneric Trojan.i
McAfee-GW-EditionBehavesLike.Win32.SuspiciousTrojan.tc
MicroWorld-eScanTrojan.GenericKD.2187917
MicrosoftTrojan:Win32/Cozer.gen.A!dha
NANO-AntivirusTrojan.Win32.Cozybear.doqbdj
Paloaltogeneric.ml
PandaGeneric Suspicious
Qihoo-360HEUR/QVM41.1.Malware.Gen
RisingDownloader.Stantinko!8.D5 (CLOUD)
SophosTroj/Spy-ADY
SymantecTrojan.Cozer
TACHYONTrojan/W32.Cozybear.1171406
TotalDefenseWin32/Tnega.eUFcEf
TrendMicroBKDR_COZER.B
TrendMicro-HouseCallBKDR_COZER.B
VBA32Trojan.Cozybear
VIPRETrojan.Win32.Generic!BT
WebrootW32.Trojan.GenKD
YandexTrojan.DL.Stantinko!
ZillyaTrojan.Cozybear.Win32.3
ZoneAlarmHEUR:Trojan.Win32.CozyDuke.gen
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about b75cc5e0ad70347b3fad6c3e3b6b2bd224ec75e6ea9c906f01b53af58b52f038.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.