File 300226fa8ab2e711beae0df01787212a3b3a8b78a93737b21c92e24fe18f956d Summary
Like

Analyse score

0 / 14

No antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0x5f5042f

MD5

cec4c167954abae5e0c8c24afb6bcdd6

Magic

PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

SHA1

571c193f2e4d14c6d23134197e29109e2abf8514

SHA256

300226fa8ab2e711beae0df01787212a3b3a8b78a93737b21c92e24fe18f956d

SHA512

d9fa9dae192e3e8c7fe7e1566de7cefa6f761b69174fb72a362513a6a75586c09cd75709eb68f6883aec8d0464b124f92aedf23870a0958f0db05b44985cef37

SSDeep

1536:cI4idEQgG9Ex5Dtyqx5Dtyqx5DtyNDd3+k4j:crd5DYe5DYe5DYZckW

Size

343.50KB

Packer
  • PE: library: .NET(v4.0.30319)[-]
  • PE: linker: Microsoft Linker(48.0)[EXE32]
TrID
  • 71.1% (.EXE) Generic CIL Executable (.NET, Mono, etc.) (73123/4/13)
  • 10.2% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 6.3% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
  • 4.3% (.EXE) Win32 Executable (generic) (4505/5/1)
  • 2.0% (.ICL) Windows Icons Library (generic) (2059/9)
Tags

ExifTool File Metadata

AssemblyVersion

1.0.0.0

CharacterSet

Unicode

CodeSize

341.00KB

Comments

CompanyName

EntryPoint

0x5720a

ExifToolVersionNumber

12.62

FileDescription

PetAsService

FileFlags

(none)

FileFlagsMask

0x003f

FileOs

Win32

FileSize

352 kB

FileSubtype

0

FileType

Win32 EXE

FileTypeExtension

exe

FileVersion

1.0.0.0

FileVersionNumber

1.0.0.0

ImageFileCharacteristics

Executable, Large address aware

ImageVersion

0.0

InitializedDataSize

2.00KB

InternalName

PetAsService.exe

LanguageCode

Neutral

LegalCopyright

Copyright © 2023

LegalTrademarks

LinkerVersion

48.0

MachineType

Intel 386 or later, and compatibles

MimeType

application/octet-stream

ObjectFileType

Executable application

OriginalFileName

PetAsService.exe

OsVersion

4.0

PeType

PE32

ProductName

PetAsService

ProductVersion

1.0.0.0

ProductVersionNumber

1.0.0.0

Subsystem

Windows GUI

SubsystemVersion

6.0

UninitializedDataSize

0

Show all

Submissions

Published Name Source Country
PetAsService.exe web FR

Indicators

Description Severity Category Module
Malware detection of a yara signature: Win32/WannaCry
malicious
Sandbox Detection Behavior
Communicates over HTTP with a low reputation domain
informational
C2 Behavior
Deletes itself after process termination
suspicious
Stealth Behavior
Write a file to the startup folder
suspicious
Persistence Behavior
Check for the existence of Virtual Machines
suspicious
Signature Yara

🚀 Coming soon!

Virtual Screens

🚀 Coming soon!