Analyse score
9 antivirus venders flagged
this file as malicious
Signature
File is not signed
Last scanned
First submission
File type
exe
9 antivirus venders flagged
this file as malicious
File is not signed
exe
CRC32 | 0xb0b5f3 |
---|---|
MD5 | 845624a4d4809b76ce383fe15c415f62 |
Magic | PE32 executable (GUI) Intel 80386, for MS Windows |
SHA1 | d5920ecd609e6b403bfa5c0a0e03025616eb0cad |
SHA256 | e8cebc231087a5a797f00ef5308fac823a797198c099236789aebe3f96c2fdff |
SHA512 | 4ee5724a8f2cef7a41c1f69c441d9a3b2fc6b57f90ebd8ee143998f082e89faf0a7eb17be50b725d7ed9937637f65fd57adaeb0aa11e3f4280328b071c8075bc |
SSDeep | 1536:Iy/ANZGw2j+s+EC/zYvtmmZX1k6Mb+KR0Nc8QsJq39:r/Ari+EC/kFRX1k6e0Nc8QsC9 |
Size | 72.07KB |
Packer |
|
TrID |
|
Tags |
CharacterSet | Unicode |
---|---|
CodeSize | 44.00KB |
CompanyName | Apache Software Foundation |
EntryPoint | 0x148b |
ExifToolVersionNumber | 12.64 |
FileDescription | ApacheBench command line utility |
FileFlags | (none) |
FileFlagsMask | 0x003f |
FileOs | Win32 |
FileSize | 74 kB |
FileSubtype | 0 |
Published | Name | Source | Country |
---|---|---|---|
win10.exe | web | undefined |
Description | Severity | Category | Module |
---|---|---|---|
Malware detection of a yara signature: Win32/WannaCry | malicious
|
Sandbox Detection | Behavior |
Communicates over HTTP with a low reputation domain | informational
|
C2 | Behavior |
Deletes itself after process termination | suspicious
|
Stealth | Behavior |
Write a file to the startup folder | suspicious
|
Persistence | Behavior |
Check for the existence of Virtual Machines | suspicious
|
Signature | Yara |
🚀 Coming soon!
🚀 Coming soon!