'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2017-07-10 15:15:33.815594 2017-07-10 15:16:10.373602 36 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2017-07-10 15:15:34 2017-07-10 15:16:08

Errors

File Details

File name 53e19f47f31b4685be1aa86107c1d375f9df4bd4.zip
File size 1463 bytes
File type Zip archive data
CRC32 8017EFD0
MD5 2204b536aedef62224e2bfaf080dcbf7
SHA1 53e19f47f31b4685be1aa86107c1d375f9df4bd4
SHA256 912190f8c4a77df484f13fc50ef6d31a6d078731ea4f45379753830950f08bf7
SHA512 f18e74ad997870bf0e63ceae1158f600204dc97df22d3182010e82db44efbeaf2cfe6008888760edc0c66134a79d75e178596260552e6229b591eb80138709cc
Ssdeep None
PEiD None matched
Yara
  • PM_Zip_with_js ()
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=0, Anomalies=0, PEiD=0, Yara=2, VT[1499714175]=0): Snort Events=0, AV Events=0
Total Score=2

File intentionally breaks sandbox processing and looks highly suspicious

Signatures

No signatures matched

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

Nothing to display.

Network Analysis

Hosts Involved

DNS Requests

Behavior Summary

Processes

registry filesystem process services network synchronization

C:\Windows\system32\lsass.exe PID: 456, Parent PID: 352

Volatility

Nothing to display.