Clicky

Explore Joe Security Cloud Basic Accounts Subscribe to our Newsletters Contact Us
top title background image

Malware Analysis Reports

Latest behavior analysis reports generated by Joe Sandbox

Check out our latest Analysis Reports of Evasive Malware

Cloud 19.0.0
12/04/2017

Analysis Report
Malicious Word document, CVE-2017-0199, dropping Dridex e-Banking trojan

MD5:
8b6f6bdefdc6b42abf9f372123152ab2

Cloud 19.0.0
21/03/2017

Analysis Report
Cerber Ransomware

MD5:
b858dc628617f4bfbb977a7348b0c512

Cloud 19.0.0
07/03/2017

Analysis Report
Nice powershell analysis of Locky & Konvter

MD5:
2161f8cf7b6c1a1a3a6fdc41083566a5

Cloud 18.0.0
23/02/2017

Analysis Report
Office Document Spear Phish target Mongolian Government

MD5:
614875cf37898562aa115a64f17b0117

Cloud 18.0.0
03/02/2017

Analysis Report
Digitally signed VBA dropper, nice VBA analysis

MD5:
2b83bd1d97eb911e9d53765edb5ea79e

Cloud 18.0.0
12/01/2017

Analysis Report
Malicious document using Macro / Shellcode to drop files (Hancitor dropper)

MD5:
85965f7ce5e44f1836ebcaff4a8aef31

Cloud 17.0.0
06/01/2017

Analysis Report
Analyis of malicious document using ENIGMA0X3 UAC Bypass

MD5:
1144eeaebb15044fa64f4d9bb5670349

Cloud 17.0.0
08/12/2016

Analysis Report
Locky Ransomware

MD5:
2790910b716c116879386d7d3784a8a5

Cloud 17.0.0
07/12/2016

Analysis Report
Golden-Eye Ransomware

MD5:
af813168402e60cfdf7c78a0d70d86e9

Cloud 17.0.0
22/11/2016

Analysis Report
Macro based downloader, drops ransomware, uses ScriptControl.AddCode obfuscation

MD5:
c2f43e6ef53280758b84f3beaca99b4b

Cloud 17.0.0
16/11/2016

Analysis Report
Macro based downloader, that utilizes bitsadmin feature to download final payload

MD5:
43b8cc7dc3ff1987354e974d77216b1b

Cloud 16.0.0
28/09/2016

Analysis Report
Macro Shellcode execution via EnumResourceTypes, callback

MD5:
3ebd49f7168ff668d617a174b1e7c30a

Cloud 16.0.0
07/09/2016

Analysis Report
e-Banking Trojan Retefe, installing fake root cert & TOR

MD5:
ff8e9c668d9bb0460029eaaca75fd498

Cloud 14.0.0
10/03/2016

Analysis Report
Retefe e-Banking Trojan

MD5:
0977eb0c066706384646987f9ded4e06

Cloud 13.0.0
04/02/2016

Analysis Report
HydraCrypt Ransomware, encryption keys / pws / settings and more

MD5:
5f2d13576e4906501c91b8bf400e0890

Cloud 13.0.0
01/02/2016

Analysis Report
Malicious document dropping Dridex

MD5:
439bee4cbe16605193aa73e7bb75b731

Cloud 13.0.0
18/01/2016

Analysis Report
CryptoWall Ransomware

MD5:
56b08b321a1b76104376186df2bf5238

Cloud 13.0.0
9/12/2015

Analysis Report
TeslaCrypt Ransomware

MD5:
43855c9d765fe7da2adcc4e6fb9d237c

Cloud 13.0.0
1/12/2015

Analysis Report
UPS Invoice Spam, malicious doc dropping Dyre

MD5:
7d4fbadc67855bfece4e6dd5f07ee7f6

Cloud 13.0.0
19/11/2015

Analysis Report
Nice behavior graphs

MD5:
51365b90cd5e3671852e5c28eab20a63

Cloud 13.0.0
11/11/2015

Analysis Report
Info Stealer, PE file in BAT trick

MD5:
6071a0cf7861302564bd4fc44396e7a4

Cloud 13.0.0
09/10/2015

Analysis Report
Dyre, e-Banking trojan, ready to go for Microsoft Edge Browser

MD5:
ad0d7d0903cb059b87892a099fe21d7e

Cloud 13.0.0
07/09/2015

Analysis Report
Trojan including many evasion tricks

MD5:
40D19FBA73C6B011814E2C6920E8792F

Cloud 12.5.0
14/07/2015

Analysis Report
Cidox/Rovnix Bootkit Analysis

MD5:
cbdda646a20d95f078393506ecdc0796

Cloud 12.5.0
10/07/2015

Analysis Report
HackingTeam CVE-2015-0349 Flash 0-day being used by malware

Cloud 12.5.0
05/05/2015

Analysis Report
Rombertik Analysis, Analysis Detection Based on PE Resource Hash, overwrites MBR

MD5:
f504ef6e9a269e354de802872dc5e209

Cloud 12.5.0
05/05/2015

Analysis Report
Rombertik Analysis with many anti analysis tricks

f504ef6e9a269e354de802872dc5e209

Cloud 12.5.0
05/05/2015

Analysis Report
Nice Rootkit Analysis of Win32.Vikim

MD5:
6f6d18dd0b2c54d34c44ff0a274399e0

Ultimate 12.5.0
05/05/2015

Analysis Report
Malicious Office Document using heavy obfuscation

MD5:
3aa72aacd5b215b6003d6b408fc65b33

Ultimate 12.0.0
20/04/2015

Analysis Report
Evasive sample executing only at specific dates

MD5:
0af4ef5069f47a371a0caf22ae2006a6

Ultimate 12.0.0
20/04/2015

Analysis Report
Evasive sample checking mouse and cursor movement

MD5:
3616a11fa463644fa20d2317c5971378

Ultimate 12.0.0
20/04/2015

Analysis Report
Evasive sample detecting Joe Sandbox by looking at the installed software

MD5:
d80e956259c858eaccb53c1affaf8141

Cloud 12.0.0
19/03/2015

Analysis Report
Nice Ransomlocker analysis

MD5:
49ad164c1f4785fd7b092fd1456d7a10

Cloud 12.0.0
13/03/2015

Analysis Report
Browse of URL found in malicious Word document, drops ransomware

URL analysis

Cloud 12.0.0
13/03/2015

Analysis Report
Word with embedded VBA macro, needs user actions to trigger

MD5:
7ed4999012308d6f63abd7652a9f1ac0

Cloud 12.0.0
04/03/2015

Analysis Report
Stealth doc dropping Trojan Dridex

MD5:
d221ab599418bbc890cf3f515babb287

Cloud 12.0.0
19/02/2015

Analysis Report
Dyre Banking Trojan Analysis

MD5:
08cea5ca7a6c1bceebe4adc7fd9404d1

Ultimate 12.0.0
05/02/2015

Analysis Report
Nice Zeus Banking Trojan Analysis

MD5:
4d08934bd040ed25dfa46542e396cb05

Cloud 11.0.0
29/01/2015

Analysis Report
Nice CBT Ransomware Locker Analysis

MD5:
521BD488A5DE44D84E9D145D3EB8A238

Cloud 19.0.0
12/04/2017

Analysis Report
Banking Trojan Marcher

MD5:
c824dd7a921f5bd2b63bcbf92bdbd7d8

Cloud 18.0.0
27/01/2017

Analysis Report
Ransomware Charger

MD5:
2b83bd1d97eb911e9d53765edb5ea79e

Cloud 18.0.0
25/01/2017

Analysis Report
Trojan BankBot, stealing credit card and login data

MD5:
beee6b598d006a6f6fc93f6b8764715f

Cloud 17.0.0
23/11/2016

Analysis Report
Trojan GT!tr.spy, stealing credit card and login data

MD5:
d9192d7713df3029b9ba393683cb90a7

Cloud 16.0.0
07/09/2016

Analysis Report
Overlay e-Banking Malware

MD5:
bee3746684b072867a5b202bfc5527dd

Cloud 14.0.0
24/03/2016

Analysis Report
Angry birds SMS trojan

MD5:
e8d28adbf37246558d922dc89f2b0c1c

Cloud 13.0.0
29/01/2016

Analysis Report
SMS Bot

ded8e08c83cdbb7c2ba1152b35879b4

Cloud 13.0.0
29/01/2016

Analysis Report
SMS Bot

MD5:
d58848f716635fc2df1d9de5c25c56d1

Mobile 3.5.0
20/02/2015

Analysis Report
Android Spy Trojan

MD5:
14d9f1a92dd984d6040cc41ed06e273e

Cloud 19.0.0
23/03/2017

Analysis Report
Mac Adware Downloader

MD5:
9e4fd1941aed7df97132d833972a65ef

Cloud 18.0.0
27/02/2017

Analysis Report
Ransomware FileCoder

MD5:
1b8be665af7729618d70bad773aac423

Cloud 18.0.0
08/02/2017

Analysis Report
iKitten / Macdownloader, Spyware

MD5:
787d664e842961f2a335139407f91a70

Cloud 18.0.0
07/02/2017

Analysis Report
Malicious Office document creating a Reverse Shell via VBA Macro

MD5:
952a36f4231c8628acea028b4145daec

Cloud 18.0.0
06/01/2017

Analysis Report
Apple Mail DOS via Safari, Support Scam

Cloud 17.0.0
11/10/2016

Analysis Report
Trojan Komplex

MD5:
81749e780d27ddd15973d19de77c9007

X 2.0.0
29/02/2016

Analysis Report
Trojan Wirelurker

MD5:
dca13b4ff64bcd6876c13bbb4a22f450

X 2.0.0
16/02/2016

Analysis Report
Ransomware Mabouia PoC

MD5:
41b631c9a1a09d95620f204f3e723b0f

X 2.0.0
16/02/2016

Analysis Report
Trojan Flashplayer

MD5:
22e368f505c952d76529005dc99794f7

X 2.0.0
16/02/2016

Analysis Report
Adware Bundlore

MD5:
d030ec7964a5863a7b78adeb3a6cc153

X 2.0.0
16/02/2016

Analysis Report
Trojan Adwind Java

MD5:
e8388a2b7d8559c6f0f27ca91d004c7c

X 1.7.0
02/11/2015

Analysis Report
EliteKeyLogger

MD5:
582b23ca6de5c022f7d4409fda26d2e7

X 1.7.0
27/10/2015

Analysis Report
Trojan Janicab

MD5:
74bbce425ea052bfb79cc66c2ffd0719

X 1.2.0
08/12/2014

Analysis Report
Trojan Ventir

MD5:
9283c61f8cce4258c8111aaf098d21ee

X 1.0.0
29/09/2014

Analysis Report
Trojan xslcmd (with keylogger detection)

MD5:
60242ad3e1b6c4d417d4dfeb8fb464a1

X 1.0.0
17/09/2014

Analysis Report
Trojan xslcmd

MD5:
60242ad3e1b6c4d417d4dfeb8fb464a1

Cloud 17.0.0
27/10/2016

Analysis Report
YiSpecter (NoIcon)

MD5:
fbf92317ca8a7d5c243ab62624701050

Cloud 17.0.0
28/10/2016

Analysis Report
YiSpecter (AdPage)

MD5:
62c6f0e3615b0771c0d189d3a7c50477