Analyse score
1
/ 14
1 antivirus venders flagged
this file as malicious
File e82d3401799dc88bf3d136c78d0b53c891d6d7438d18e2f4f058edd84f979d71 Summary
Basic properties
| CRC32 | 0x24fac37f |
|---|---|
| MD5 | c077f6b251eb58b378f0fd377fa8dfe9 |
| Magic | Ruby script, ASCII text, with CRLF line terminators |
| SHA1 | 8c8fe7db8dec7d7a82485c776bc7019d746ceb5c |
| SHA256 | e82d3401799dc88bf3d136c78d0b53c891d6d7438d18e2f4f058edd84f979d71 |
| SHA512 | 5c411452e96784ab8c19c6f24175ea56defebbde4619a0eec79040bc619788e2bc653b782422ff826eb20e77103c8ecc199fe7d3d14c06141c8429b9d707b6fd |
| SSDeep | 96:5BX9HRt+uli1/dKXg1CkCigtSQSqkeH7jnjORbNVHMW:X9L+6U/QMCigtSQSqz7bjORbX |
| Size | 6.08KB |
| Packer |
|
| TrID |
|
ExifTool File Metadata
| ExifToolVersionNumber | 12.62 |
|---|---|
| FileSize | 6.2 kB |
| FileType | TXT |
| FileTypeExtension | txt |
| LineCount | 157 |
| MimeEncoding | us-ascii |
| MimeType | text/plain |
| Newlines | Windows CRLF |
| WordCount | 502 |
Submissions
| Published | Name | Source | Country |
|---|---|---|---|
| 43338.rb | web | IN |
Indicators
| Description | Severity | Category | Module |
|---|---|---|---|
| Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
| Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
| Deletes itself after process termination | suspicious
|
Stealth | Behavior |
| Write a file to the startup folder | suspicious
|
Persistence | Behavior |
| Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
Virtual Screens
🚀 Coming soon!