Malware Analysis – djvu – 3926dc32500a1214432357400c2743e1

October 10, 2022

Malware Analysis

Score: 10

  • MALWARE FAMILY: djvu
  • TAGS:family:djvu, family:redline, family:smokeloader, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojan
  • MD5: 3926dc32500a1214432357400c2743e1
  • SHA1: 5ab53cea630a962e320d641d0f3e31beab8513ee
  • ANALYSIS DATE: 2022-10-10T04:05:11Z
  • TTPS: T1012, T1120, T1082, T1057, T1005, T1081, T1060, T1112, T1018, T1130, T1102, T1114, T1053, T1222

ScoreMeaningExample
10Known badA malware family was detected.
8-9Likely maliciousOne or more known damaging malware attack patterns were detected.

Examples:
The deleting of shadow copies on Windows.
6-7Shows suspicious behaviourOne or more suspicious actions were detected. The detected actions can be malicious but also have (common) benign uses.

Examples:
Changing file permissions.
Anti-VM behaviour/trying to detect a VM.
2-5Likely benignOne or more interesting behaviours were detected. The detected actions are interesting enough to be notified about but are not directly malicious.
1No (potentially) malicious behaviour was detected.N/A
Tags: , , ,

You may have missed

Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]100[.]168[.]4:8888

October 29, 2025
Cobalt-Strike

Cobalt Strike Beacon Detected – 43[.]139[.]169[.]60:8009

October 29, 2025
Cobalt-Strike

Cobalt Strike Beacon Detected – 120[.]48[.]50[.]33:8888

October 29, 2025
Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]97[.]118[.]238:8888

October 29, 2025
Cobalt-Strike

Cobalt Strike Beacon Detected – 121[.]43[.]28[.]208:8888

October 29, 2025