Analyse score
1 antivirus venders flagged
this file as malicious
Signature
File is not signed
Last scanned
First submission
File type
exe
1 antivirus venders flagged
this file as malicious
File is not signed
exe
CRC32 | 0x9acb8197 |
---|---|
MD5 | 2da61ec8a3b8b0d08c6114bf30366b00 |
Magic | PE32+ executable (console) x86-64, for MS Windows |
SHA1 | c75d8950df96e5ab22364452d758e2d6c5a61d3c |
SHA256 | 723f848d65360accfc2aa70a38d862ce1f4588b6e134e8208477d593e96bb45f |
SHA512 | e7647ce1a8bfcfa7b583310a2e2fff0459c8471fb600bb3a6a7f20b8700cea508f21911a53ae770b7a7d2e3ef4e10137e07bea597d5447ed56691c2a96624637 |
SSDeep | 49152:q8b61gvO4F6AlzdXmewvukKH2u7x1aYi27R/OVr5FPxcYj+fdR9alpCPTI2A5:aqdF6Ajz37s5t |
Size | 5.67MB |
Packer |
|
TrID |
|
Tags |
CodeSize | 3.66MB |
---|---|
EntryPoint | 0x68160 |
ExifToolVersionNumber | 12.64 |
FileSize | 5.9 MB |
FileType | Win64 EXE |
FileTypeExtension | exe |
ImageFileCharacteristics | Executable, Large address aware |
ImageVersion | 1.0 |
InitializedDataSize | 89.50KB |
LinkerVersion | 3.0 |
MachineType | AMD AMD64 |
Published | Name | Source | Country |
---|---|---|---|
main.go.exe | web | undefined |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!