'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2017-07-30 08:26:24.179322 2017-07-30 08:27:01.606025 37 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2017-07-30 08:26:24 2017-07-30 08:27:00

Errors

File Details

File name 77f830a56e3452c9132a92f88113aaefe5df6b42.zip
File size 1178 bytes
File type Zip archive data
CRC32 36FA8430
MD5 28c7659130fe15a7f69a1e1dedea506a
SHA1 77f830a56e3452c9132a92f88113aaefe5df6b42
SHA256 2f9d6231ca604771fa03a3d48fc5e03631d9d1d0094c237647feeb37f95efed0
SHA512 c900ea7483ba1f9f04a14a46a0ffe08f1a0dbf0b1339f06eff7d39fda195ee04a99d5081a2c1c230aef259352029682c2e751b5225e9d4515918ba8f3ff84c43
Ssdeep None
PEiD None matched
Yara
  • PM_Zip_with_js ()
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=0, Anomalies=0, PEiD=0, Yara=2, VT[1501417624]=0): Snort Events=0, AV Events=0
Total Score=2

File intentionally breaks sandbox processing and looks highly suspicious

Signatures

No signatures matched

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

Nothing to display.

Network Analysis

Hosts Involved

DNS Requests

Behavior Summary

Processes

registry filesystem process services network synchronization

C:\Windows\system32\lsass.exe PID: 456, Parent PID: 352

Volatility

Nothing to display.