'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2016-12-01 00:46:29.190816 2016-12-01 00:49:18.166158 168 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2016-12-01 00:46:29 2016-12-01 00:49:17

File Details

File name 51f2932e34cefce0626b2cfec1d7afe2b25a9fb5.zip
File size 3170 bytes
File type Zip archive data, at least v2.0 to extract
CRC32 038C4A56
MD5 cc24fb205653cd4fc7fc551a18046a01
SHA1 51f2932e34cefce0626b2cfec1d7afe2b25a9fb5
SHA256 1f6701a642e11ff9f163cec1e2201109142a7f24fc8ad07ec9eb89a3e6df0326
SHA512 3d7c6205b5e18b83003658a506ba5ec0127c809dfa8f6d65ff7e8374597cfd7595e3361234d7af42832e5bdf14762122339b4c991972b83b9dd1b4d511bf5e35
Ssdeep 96:sqT9ZS9If9SnPKNwN8QlXnFjQiazb/MQDPxHkXG5lL+S:HT/SyWUkTlXnFKgKxZ5laS
PEiD None matched
Yara
  • PM_Zip_with_js ()
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=0, Anomalies=0, PEiD=0, Yara=2, VT[1480553361]=0): Snort Events=0, AV Events=2
Total Score=25

CLAMAV DETECTED:
Sanesecurity.Malware.26507.JsHeur.UNOFFICIAL FOUND
DROPPED FILE - -587nl360wf493.js: Sanesecurity.Malware.26507.JsHeur.UNOFFICIAL FOUND

Signatures

No signatures matched

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

-587nl360wf493.js

Network Analysis

Hosts Involved

DNS Requests

HTTP Requests

Processes

registry filesystem process services network synchronization

Nothing to display.

Volatility

Nothing to display.