File c18b89b93281fd2d13b83c4bae17e5fcb114c2b81e38721f1522324578006fef Summary
Like

Analyse score

0 / 14

No antivirus venders flagged
this file as malicious

Signature

File is not signed

Last scanned

First submission

File type

exe

exe

Basic properties

CRC32

0xac39df0e

MD5

a0bfb744765f631ed426ce96481bcdc0

Magic

PE32+ executable (console) x86-64, for MS Windows

SHA1

5c57c318a93c7c3a1cfe89bc7892babb95e84eb6

SHA256

c18b89b93281fd2d13b83c4bae17e5fcb114c2b81e38721f1522324578006fef

SHA512

eab7973bcc891c059fcb5cf8e6e9ab0ed0ba3aff153b6bdb0f80b8d9a68d79c878e0966b95c89bc8b298782842e5006e02c1a708a51db83cefad40db8cd140ce

SSDeep

1536:ADWV3HZg///fuv5qeW0356fq+gBb6T4xWKbTSZkKQ4SODA:7V3HZg///fuBqeh0fq+gBWKbTSZkKQ4o

Size

63.98KB

Packer
  • PE+(64): linker: unknown(2.41)[EXE64,console]
TrID
  • 44.4% (.EXE) Win64 Executable (generic) (10523/12/4)
  • 21.3% (.EXE) Win16 NE executable (generic) (5038/12/1)
  • 8.7% (.ICL) Windows Icons Library (generic) (2059/9)
  • 8.5% (.EXE) OS/2 Executable (generic) (2029/13)
  • 8.4% (.EXE) Generic Win/DOS Executable (2002/3)
Tags

ExifTool File Metadata

CodeSize

2.00KB

EntryPoint

0x1000

ExifToolVersionNumber

12.64

FileSize

66 kB

FileType

Win64 EXE

FileTypeExtension

exe

ImageFileCharacteristics

Executable, No line numbers, Large address aware

ImageVersion

0.0

InitializedDataSize

7.50KB

LinkerVersion

2.41

MachineType

AMD AMD64

MimeType

application/octet-stream

OsVersion

4.0

PeType

PE32+

Subsystem

Windows command line

SubsystemVersion

5.2

UninitializedDataSize

512

Show all

Submissions

Published Name Source Country
hello.exe web undefined

Indicators

Description Severity Category Module
Malware detection of a yara signature: Win32/WannaCry
malicious
Sandbox Detection Behavior
Communicates over HTTP with a low reputation domain
informational
C2 Behavior
Deletes itself after process termination
suspicious
Stealth Behavior
Write a file to the startup folder
suspicious
Persistence Behavior
Check for the existence of Virtual Machines
suspicious
Signature Yara

🚀 Coming soon!

Virtual Screens

🚀 Coming soon!