Analyse score
10
/ 14
10 antivirus venders flagged
this file as malicious
10 antivirus venders flagged
this file as malicious
CRC32 | 0xf9eb24e7 |
---|---|
MD5 | 4b41ae5ab229f8c9d7e7214d2c0cc5f6 |
Magic | Zip archive data, at least v2.0 to extract |
SHA1 | c2082f01b4df93f5c9020de54fc4a86597d6aa76 |
SHA256 | 7fbc6dbb613afdca3a9c0a35d8cafc31aaa90029b659dd472fbc9f0f29ab8201 |
SHA512 | 35cac6355521748b16324412a27e4e8aab23fec95b96b573421d2f941cff8f2f0c9b2f718e2d18c5c145167ae42aa133816eded35c645ee9de941b584983f9b7 |
SSDeep | 6144:/CiSs8+JUB/e6KHqsftMD5a0mMuH46MbQqb0wj+mlXqwp1t3ZeYyhMcTc2RC11:MsnU06XsOb+Ub7b0w1qQdT2A11 |
Size | 339.21KB |
Packer |
|
TrID |
|
ExifToolVersionNumber | 12.36 |
---|---|
FileSize | 339 KiB |
FileType | ZIP |
FileTypeExtension | zip |
MimeType | application/zip |
ZipBitFlag | 0 |
ZipCompressedSize | 347228 |
ZipCompression | Deflated |
ZipCrc | 0xb0922764 |
ZipFileName | TT-8167266.com |
ZipRequiredVersion | 20 |
Published | Name | Source | Country |
---|---|---|---|
VirusShare_4b41ae5ab229f8c9d7e7214d2c0cc5f6 | api | CN |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!