Analyse score
0
/ 14
No antivirus venders flagged
this file as malicious
Last scanned
First submission
File type
js
js
No antivirus venders flagged
this file as malicious
js
CRC32 | 0x54092028 |
---|---|
MD5 | 5f75d79b570deda667fa69182b1ce12c |
Magic | RFC 822 mail, ASCII text, with CRLF line terminators |
SHA1 | 8c5e8ff79f0ffa516d1c69340be18e19f622a36d |
SHA256 | 1f9da1c56d8f3f3cb9ba8c7c5c605f8ba4c19708f4f6bf210fb17971420c2d02 |
SHA512 | 015c2efa9cbbbdbbcc06ac3e0307d497d148d68e07d99ac2e04983eb53f37ab65aac6aed4cfc025325e3bdb7865b060ce2a42348ba0f473b74d2fb3b25c1acde |
SSDeep | 192:oydAe1JM5P4/nTLSmjDlUGBDv/5FMh6IYpczJQaGrZ2Q58Y3MuOtB:oyupWPT2ADl/R5odJQaGl7MuOf |
Size | 14.74KB |
Packer |
|
TrID |
|
ExifToolVersionNumber | 12.64 |
---|---|
FileSize | 15 kB |
FileType | TXT |
FileTypeExtension | txt |
LineCount | 231 |
MimeEncoding | us-ascii |
MimeType | text/plain |
Newlines | Windows CRLF |
WordCount | 406 |
Published | Name | Source | Country |
---|---|---|---|
Fwd_ Account change.eml | web | undefined |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!