'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2016-11-30 20:57:31.893823 2016-11-30 21:00:17.907740 166 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2016-11-30 20:57:32 2016-11-30 21:00:17

File Details

File name b17f7fe37752405b20caecf839fd30cf9cfd4cab.zip
File size 3174 bytes
File type Zip archive data, at least v2.0 to extract
CRC32 12A1645B
MD5 e24ed1a4a2db2169dcd99bf1c31e2530
SHA1 b17f7fe37752405b20caecf839fd30cf9cfd4cab
SHA256 95159610bda374a91a438969d2a5e761e251e941e73de197c1f8da692149f05d
SHA512 03ca265fe656be57f81e4108b22e13dcfde411720a8b8cc374cccbd2a8898d39532a23da4cc43984d8e63ac28d06350396ccb77b2ced0d564807f06cfbd41ae9
Ssdeep 96:WLJjEA/kHoN6hNnQJBHfnVOpChL/0xlZX:0kQ6hBQJBvVPxwX
PEiD None matched
Yara
  • PM_Zip_with_js ()
VirusTotal Permalink
VirusTotal Scan Date: 2016-11-30 19:54:25
Detection Rate: 13/55 (Expand)

MetaFlows Scores

Metaflows Analysis Results (Signatures=0, Anomalies=0, PEiD=0, Yara=2, VT[1480539620]=100): Snort Events=0, AV Events=2
Total Score=100

CLAMAV DETECTED:
Sanesecurity.Malware.26507.JsHeur.UNOFFICIAL FOUND
DROPPED FILE - -0m40s1mc9357.js: Sanesecurity.Malware.26507.JsHeur.UNOFFICIAL FOUND

Signatures

No signatures matched

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

-0m40s1mc9357.js

Network Analysis

Hosts Involved

DNS Requests

HTTP Requests

Processes

registry filesystem process services network synchronization

Nothing to display.

Volatility

Nothing to display.