'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2016-11-08 15:23:13.214340 2016-11-08 15:23:19.169468 5 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo2 win7 Clone 2 VirtualBox 2016-11-08 15:23:14 2016-11-08 15:23:18

Errors

File Details

File name 28b96c6153df79350bbea5fe559ccc248135d776.zip
File size 1100 bytes
File type Zip archive data, at least v2.0 to extract
CRC32 934D88C5
MD5 4d7b7bfa993df9bb14d1b05f69512880
SHA1 28b96c6153df79350bbea5fe559ccc248135d776
SHA256 5f75e383faa83e3a51ced76d87637b4e455d5ff5bd228466d80ed24579709035
SHA512 755c9b7b1e051cbbd090c4d39277534b5039fcde78420ecfe65ea19de8b7197f465e9786b818d555576c87491f1b0c925ccf64483ccb0a3b33d175c4cf3dd19a
Ssdeep 24:9duBCL7cPGt1E/cFr3JTwN3E7VGSTX66KhDG7fhZM/zZ9IW0al:9cWg8E/cFr3J0N0ccRKAZ8zZ10u
PEiD None matched
Yara
  • PM_Zip_with_js ()
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=0, Anomalies=0, PEiD=0, Yara=2, VT[1478618602]=0): Snort Events=0, AV Events=1
Total Score=2

CLAMAV DETECTED:
Sanesecurity.Malware.26447.JsHeur.UNOFFICIAL FOUND

Signatures

No signatures matched

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

Nothing to display.

Network Analysis

Nothing to display.

Processes

registry filesystem process services network synchronization

Nothing to display.

Volatility

Nothing to display.