A user contacts the Ninja Cyber help desk after visiting what appeared to be a legitimate news website. A pop-up warning claimed the computer was infected with multiple viruses and instructed the user to download a cleanup tool.
Trusting the alert, the user downloaded and executed QuickFix_Cleaner.exe.
The Security Operations Center (SOC) isolated the workstation from the network and obtained a copy of the executable for malware analysis.
Objective
Analyze QuickFix_Cleaner.exe using static and dynamic analysis techniques to determine whether it is malicious and identify its behavior, indicators of compromise (IOCs), and potential impact.
