File 2d0209d51323fdcc878fdcf1fc75b2287645c55d06be1097197f1ea91bc68908 Summary
Like

Analyse score

8 / 14

8 antivirus venders flagged
this file as malicious

Last scanned

First submission

File type

zip

zip

Basic properties

CRC32

0xa2cb4642

MD5

8349ef5994a59bc282e1be0af6bd46a6

Magic

Zip archive data, at least v1.0 to extract

SHA1

8a35a45869bb9fe826e652087de648fa99f40c26

SHA256

2d0209d51323fdcc878fdcf1fc75b2287645c55d06be1097197f1ea91bc68908

SHA512

b59f2ee663e4085363b3df70aab34e27334a0945316f11e3ba6830540b1b5c11f4e4bb47beb652527dbd9f17c35203a1a304b24007e44d3bf807992abd5ed4c1

SSDeep

98304:v74omMVW70XOpGw+GvmRrgVSLIKbtfvFC2Ru+LzAy+pSJ/iCexNRji:8ZMeJpGwpAr79bvCQu+LzKpSMCGRji

Size

3.73MB

Packer
  • Binary: archive: Zip(1.0)[26.4%,341 files,145 dirs]
TrID
  • 61.5% (.XPI) Mozilla Firefox browser extension (8000/1/1)
  • 30.7% (.ZIP) ZIP compressed archive (4000/1)
  • 7.6% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)

ExifTool File Metadata

ExifToolVersionNumber

12.64

FileSize

3.9 MB

FileType

ZIP

FileTypeExtension

zip

MimeType

application/zip

Warning

[minor] Use the Duplicates option to extract tags for all 486 files

ZipBitFlag

0

ZipCompressedSize

0

ZipCompression

None

ZipCrc

0x00000000

ZipFileName

saferwall-main/

ZipRequiredVersion

10

ZipUncompressedSize

0

Show all

Submissions

Published Name Source Country
saferwall-main.zip web undefined

Indicators

Description Severity Category Module
Malware detection of a yara signature: Win32/WannaCry
malicious
Sandbox Detection Behavior
Communicates over HTTP with a low reputation domain
informational
C2 Behavior
Deletes itself after process termination
suspicious
Stealth Behavior
Write a file to the startup folder
suspicious
Persistence Behavior
Check for the existence of Virtual Machines
suspicious
Signature Yara

🚀 Coming soon!

Virtual Screens

🚀 Coming soon!