Analyse score
9 antivirus venders flagged
this file as malicious
Signature
File is not signed
Last scanned
First submission
File type
exe
9 antivirus venders flagged
this file as malicious
File is not signed
exe
CRC32 | 0xab369dda |
---|---|
MD5 | 28e2720dd44dea7b5b64c7712ec3e863 |
Magic | PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows |
SHA1 | 0f7ad92c57e73b69234fa454b27c9931b2c1c0c8 |
SHA256 | e4b24a98d38285445fdbbe1ca8de09b073b7b512bb982591753e5cb26499652b |
SHA512 | ba1b59fcac45f8a1403b90f4857d59301f75eb5ce6090ee5a84e087533bacb26d9883c4f902d04cbdef7b93575345405dab5db3b7c0685cd3397b4b1849e204e |
SSDeep | 3072:+ICAVrmdPKqdEteRiMNRWiAn3tldXzBBhP/YXYtRRw99TorOR8hu9zfSvCRfNA0:5rlq+7biAdldjPJvGUrk6ehfuUk6 |
Size | 658.00KB |
Packer |
|
TrID |
|
Tags |
AssemblyVersion | 1.0.0.0 |
---|---|
CharacterSet | Unicode |
CodeSize | 492.00KB |
Comments | ZaszyfrowanePliki |
CompanyName | ZaszyfrowanePliki |
EntryPoint | 0x7cece |
ExifToolVersionNumber | 12.49 |
FileDescription | ZaszyfrowanePliki |
FileFlags | (none) |
FileFlagsMask | 0x003f |
FileOs | Win32 |
Published | Name | Source | Country |
---|---|---|---|
Internet Download Manager 6.34 pre-crackedByGmBH.exe | web | AU |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!