File: ef16f05e8e6aa7d1834562cdfe1881bf

Metadata
File name:Office.exe
File type:PE32 executable (GUI) Intel 80386, for MS Windows
File size:1321993
Analysis date:2023-11-18 12:19:18
MD5:ef16f05e8e6aa7d1834562cdfe1881bf
SHA1:74a40d8960cc13cd3a37e935f8edba05996e9077
SHA256:364383c8d186e9e298b2e13b07c992a793cc62994bd127f3746d15a1b530b7d8
SHA512:N/A
SSDEEP:7482a1595744a3c77ac9461f3f27a729
IMPHASH:34467d1af21bd158832ec2a7b45a9a401342a18c12c567d8029e33191f48822a
Authentihash:N/A
Related resources
APTNotes
Cyber threat intelligence reports associated with ef16f05e8e6aa7d1834562cdfe1881bf.
Loading...
Domains
Domains the malware sample communicates with.
DomainIP
db-ip.comN/A
ipinfo.ioN/A
www.maxmind.comN/A
Hosts
Hosts the malware sample communicates with.
194.49.94.152
34.117.59.81
104.26.5.15
104.18.145.235
HTTP Requests
HTTP requests the malware sample makes.
HostURLUser-Agent
104.18.145.235 (www.maxmind.com)www.maxmind.com/geoip/v2.1/city/meMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.36
N/A
N/A
N/A
104.18.145.235 (www.maxmind.com)www.maxmind.com/geoip/v2.1/city/meMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.36
N/A
N/A
N/A
104.18.145.235 (www.maxmind.com)www.maxmind.com/geoip/v2.1/city/meMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.36
N/A
N/A
N/A
104.18.145.235 (www.maxmind.com)www.maxmind.com/geoip/v2.1/city/meMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.36
N/A
N/A
N/A
AV Detections
AV detection names associated with the malware sample.
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about ef16f05e8e6aa7d1834562cdfe1881bf.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.