'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2016-09-13 19:45:07.821709 2016-09-13 19:47:24.193895 136 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2016-09-13 19:45:11 2016-09-13 19:47:24

File Details

File name 1cc6dc3961e3992f8a9dcacb813f4fb7c265e4fe.exe
File size 24381208 bytes
File type PE32 executable for MS Windows (GUI) Intel 80386 32-bit
CRC32 221BD897
MD5 55df51a2d956e1086a21b60d58f877b0
SHA1 1cc6dc3961e3992f8a9dcacb813f4fb7c265e4fe
SHA256 c196e15c44c6b7e7ef2bb5e4b4192d186a77950bd0a515e170001d22df04db43
SHA512 c7964337107eb684b37a21d522a75e5d0929bae2c0810900ae01031749c6bfcf5b15e124363c4e43c560628a22103c6f0d6093b3d114104476f832cb44d9c5c9
Ssdeep 393216:B1T4Km3wQSM+bOhl65eKDE/W/DKDeZDdArXhsYVT4xUTBFeKrR33/DDG/t/a:B1VPM+d5eKM+KDe0RsYV5TBd/HG/9a
PEiD None matched
Yara
  • Str_Win32_Winsock2_Library (Match Winsock 2 API library declaration)
  • with_sqlite (Rule to detect the presence of SQLite data in raw image)
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=50, Anomalies=0, PEiD=0, Yara=4, VT[1473796064]=0): Snort Events=0, AV Events=0
Total Score=50

Signatures

has_pdb details
av_detect_china_key details
antivm_disk_size details

Screenshots

No screenshots available.

Static Analysis

Version Infos

Sections

Resources

Imports

Strings