Analyse score
8 antivirus venders flagged
this file as malicious
Last scanned
First submission
File type
zip
8 antivirus venders flagged
this file as malicious
zip
CRC32 | 0xa2cb4642 |
---|---|
MD5 | 8349ef5994a59bc282e1be0af6bd46a6 |
Magic | Zip archive data, at least v1.0 to extract |
SHA1 | 8a35a45869bb9fe826e652087de648fa99f40c26 |
SHA256 | 2d0209d51323fdcc878fdcf1fc75b2287645c55d06be1097197f1ea91bc68908 |
SHA512 | b59f2ee663e4085363b3df70aab34e27334a0945316f11e3ba6830540b1b5c11f4e4bb47beb652527dbd9f17c35203a1a304b24007e44d3bf807992abd5ed4c1 |
SSDeep | 98304:v74omMVW70XOpGw+GvmRrgVSLIKbtfvFC2Ru+LzAy+pSJ/iCexNRji:8ZMeJpGwpAr79bvCQu+LzKpSMCGRji |
Size | 3.73MB |
Packer |
|
TrID |
|
ExifToolVersionNumber | 12.64 |
---|---|
FileSize | 3.9 MB |
FileType | ZIP |
FileTypeExtension | zip |
MimeType | application/zip |
Warning | [minor] Use the Duplicates option to extract tags for all 486 files |
ZipBitFlag | 0 |
ZipCompressedSize | 0 |
ZipCompression | None |
ZipCrc | 0x00000000 |
ZipFileName | saferwall-main/ |
Published | Name | Source | Country |
---|---|---|---|
saferwall-main.zip | web | undefined |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!