File 970d5dd16cd51202d38e65c2fa258a17f431061421d09078bf35bddb8a38ea66 Summary
Like

Analyse score

0 / 14

No antivirus venders flagged
this file as malicious

Last scanned

First submission

Basic properties

CRC32

0xee19cae4

MD5

30da0b8073f1bf5cbecc4a0759d5047d

Magic

Java archive data (JAR)

SHA1

3d18bd7c649b4a8ed091179fd92f16a32247dd84

SHA256

970d5dd16cd51202d38e65c2fa258a17f431061421d09078bf35bddb8a38ea66

SHA512

6289b0821fecea577e6d5f05a253ea6df919b2026d8ccce94e7e33e688877dab8b97d6d5f1a21d0d26fed6def96d9b3de2c376931256e1844b8d2ff7685a10c9

SSDeep

768:DIUnx6zcLie6lezPbCNcevEajsnD2qEVS+snt:DIUlLie6leCNcUjo2Lf2t

Size

29.48KB

Packer
  • Binary: archive: Zip(2.0)[1 dir]
TrID
  • 72.9% (.JAR) Java Archive (13500/1/2)
  • 21.6% (.ZIP) ZIP compressed archive (4000/1)
  • 5.4% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)

ExifTool File Metadata

ExifToolVersionNumber

12.62

FileSize

30 kB

FileType

ZIP

FileTypeExtension

zip

MimeType

application/zip

Warning

Stream mode data encountered, file list may be incomplete

ZipBitFlag

0x0808

ZipCompressedSize

0

ZipCompression

Deflated

ZipCrc

0x00000000

ZipFileName

META-INF/

ZipRequiredVersion

20

ZipUncompressedSize

0

Show all

Submissions

Published Name Source Country
burploader.jar web IN

Indicators

Description Severity Category Module
Malware detection of a yara signature: Win32/WannaCry
malicious
Sandbox Detection Behavior
Communicates over HTTP with a low reputation domain
informational
C2 Behavior
Deletes itself after process termination
suspicious
Stealth Behavior
Write a file to the startup folder
suspicious
Persistence Behavior
Check for the existence of Virtual Machines
suspicious
Signature Yara

🚀 Coming soon!

Virtual Screens

🚀 Coming soon!