Analyse score
0
/ 14
No antivirus venders flagged
this file as malicious
File 0ab469342650a29efcad8ce036e2a8125b29ff3014657d3350372dd494d1b011 Summary
Basic properties
| CRC32 | 0x27e011df |
|---|---|
| MD5 | 284ec8b6ffcca723be6f8adfbfd0685b |
| Magic | gzip compressed data, last modified |
| SHA1 | 51eab9b74430b691c29f68795a7d8499d54ccb60 |
| SHA256 | 0ab469342650a29efcad8ce036e2a8125b29ff3014657d3350372dd494d1b011 |
| SHA512 | 6a1eeeca729eb1eefc702f70ac3ce170d761e79da38444a89e0635b14713d567ef182ecfb8498a9b39b890e8b07ccae0780c3c5f8f374f6420c34f75bec31473 |
| SSDeep | 96:GuiOAV4TXFU+cil5YNSoLvp4otrbgyRng84SQz:GuiO5FUpil5WDx/pngLVz |
| Size | 667.08KB |
| Packer |
|
| TrID |
|
ExifTool File Metadata
| Compression | Deflated |
|---|---|
| ExifToolVersionNumber | 12.62 |
| ExtraFlags | (none) |
| FileSize | 683 kB |
| FileType | GZIP |
| FileTypeExtension | gz |
| Flags | (none) |
| MimeType | application/x-gzip |
| OperatingSystem | FAT filesystem (MS-DOS, OS/2, NT/Win32) |
Submissions
| Published | Name | Source | Country |
|---|---|---|---|
| Specifikacije narudžbe pdf.tgz | web | HR |
Indicators
| Description | Severity | Category | Module |
|---|---|---|---|
| Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
| Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
| Deletes itself after process termination | suspicious
|
Stealth | Behavior |
| Write a file to the startup folder | suspicious
|
Persistence | Behavior |
| Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
Virtual Screens
🚀 Coming soon!