Analyse score
0
/ 14
No antivirus venders flagged
this file as malicious
File 9bb5e7a76e66d105fa5a65728517b8d8f9465525465f92eb68a89705476b1d26 Summary
Basic properties
| CRC32 | 0xd000b247 |
|---|---|
| MD5 | 67a4b9c37341974ab1272f9510142564 |
| Magic | data |
| SHA1 | fb1c6a23e8e0693194a365619b388b09155c2183 |
| SHA256 | 9bb5e7a76e66d105fa5a65728517b8d8f9465525465f92eb68a89705476b1d26 |
| SHA512 | 16b727f1c7f31f646847232df61f2ec6ab0a4dd6ec440a4bb2ed24ed810f13234f88faf55acd5c029f8aa42b3736e3983ffd8125760d49b031db191d40f40f42 |
| SSDeep | 1536:kOKkK8slBzEYNYZsbLqQ4rc6yW/34IGE2JnPE0iIv7yrTCJMPFdTugYeKF2L2Z1y:kfkKJTuKLqI6n/34I12hPdv7yrNP7TXh |
| Size | 83.71KB |
| Packer |
|
| TrID |
|
Submissions
| Published | Name | Source | Country |
|---|---|---|---|
| 9bb5e7a76e66d105fa5a65728517b8d8f9465525465f92eb68a89705476b1d26 | web | AU |
Indicators
| Description | Severity | Category | Module |
|---|---|---|---|
| Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
| Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
| Deletes itself after process termination | suspicious
|
Stealth | Behavior |
| Write a file to the startup folder | suspicious
|
Persistence | Behavior |
| Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
Virtual Screens
🚀 Coming soon!