'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2017-07-14 20:20:44.277148 2017-07-14 20:21:50.259165 65 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2017-07-14 20:20:45 2017-07-14 20:21:50

File Details

File name 88250b111b14c6ff8a1424edee7cee3138f8aa3c.exe
File size 15310024 bytes
File type PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
CRC32 16FA15B5
MD5 df351a1ba809c0bb1c9d5bcd35162a0c
SHA1 88250b111b14c6ff8a1424edee7cee3138f8aa3c
SHA256 08d08d46ca297a24a5e6e639efe753ca82d223f3e85ec07c4d1d6ac587b9e302
SHA512 6611337fb6f41ff34fe871d928af068c5970bf3767125c4082b99242385ca6031454f2061677bab43fc7d4740d971e19434e17d8d868ae58b5b4c62e9eb305da
Ssdeep None
PEiD None matched
Yara None matched
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=50, Anomalies=0, PEiD=0, Yara=0, VT[1500078171]=0): Snort Events=0, AV Events=0
Total Score=50

Dropped File/Buffer Yara Signatures:
da09c6d44a7ed3de_pnzhgxt.exe: vmdetect
aae60492c46fdfc7_cinematycoon.exe: vmdetect

Signatures

antivm_queries_computername details
locates_browser details
antivm_memory_available details
pe_features details
Roaming_Profile_Modified details
Startup_File_Accessed details
allocates_rwx details
antivm_disk_size details
creates_shortcut details

Screenshots

No screenshots available.

Static Analysis

Version Infos

Sections

Resources

Imports

Strings