Malware Analysis – djvu – a086c884d1dc2920e8a959fcb8457f93

December 12, 2022

Malware Analysis

Score: 10

  • MALWARE FAMILY: djvu
  • TAGS:family:djvu, family:smokeloader, family:vidar, botnet:1808, botnet:517, backdoor, collection, discovery, persistence, ransomware, spyware, stealer, trojan
  • MD5: a086c884d1dc2920e8a959fcb8457f93
  • SHA1: 8a3e9388794c8ba3fcfd43906ea7942673cf26b0
  • ANALYSIS DATE: 2022-12-12T15:10:06Z
  • TTPS: T1114, T1012, T1120, T1082, T1005, T1081, T1064, T1222, T1060, T1112, T1053, T1102

ScoreMeaningExample
10Known badA malware family was detected.
8-9Likely maliciousOne or more known damaging malware attack patterns were detected.

Examples:
The deleting of shadow copies on Windows.
6-7Shows suspicious behaviourOne or more suspicious actions were detected. The detected actions can be malicious but also have (common) benign uses.

Examples:
Changing file permissions.
Anti-VM behaviour/trying to detect a VM.
2-5Likely benignOne or more interesting behaviours were detected. The detected actions are interesting enough to be notified about but are not directly malicious.
1No (potentially) malicious behaviour was detected.N/A
Tags: , , ,

You may have missed

image

CVE Alert: CVE-2025-10914 – Proliz Software Ltd. Co. – OBS (Student Affairs Information System)

October 23, 2025
image

[QILIN] – Ransomware Victim: NurseSpring

October 23, 2025
image

[NOVA] – Ransomware Victim: The Laxmi Niwas Palace

October 23, 2025
2414653dceac5a22d3820c32899cb4a3e477d7f389065167785ec1fd6a3edb0b

Spacex Pulls Plug On 2,500 Starlink Terminals Tied To Myanmar Fraud Farms

October 23, 2025
470e52bf0a130ec8a8ed961c7b937a748dcf92b53086aa0d8bfd5a4cb25f15df

Is Php Declining? Jetbrains Says Yes. And No

October 23, 2025