'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2017-08-29 12:49:11.317175 2017-08-29 12:50:06.646270 55 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2017-08-29 12:49:12 2017-08-29 12:50:05

Errors

File Details

File name fd45ef37f2bcc85f177643b5bda7e281a96c8f84.apk
File size 14111664 bytes
File type Zip archive data, at least v1.0 to extract
CRC32 F5C45C79
MD5 1758308e4d701d83ee9421d213e3cdc2
SHA1 fd45ef37f2bcc85f177643b5bda7e281a96c8f84
SHA256 d12e5a400aa9d4a3d13d9004042166ab43e8baeaaaaec669ccd54d0a8b0f5209
SHA512 a487ae18b9caf97fae2b99d929d8b3017b4eceef1f8cc06677b177ce75d3590f2b27e8a267d0e2d8b85034563ffa19eac0f602fd9d52867692239d266826e90f
Ssdeep None
PEiD None matched
Yara
  • WarpStrings (Warp Identifying Strings)
  • Warp (Warp)
VirusTotal Permalink
VirusTotal Scan Date: 2017-08-29 10:47:32
Detection Rate: 1/59 (Expand)

MetaFlows Scores

Metaflows Analysis Results (Signatures=50, Anomalies=0, PEiD=0, Yara=4, VT[1504025418]=0): Snort Events=0, AV Events=0
Total Score=50

Signatures

antivirus_virustotal details

Screenshots

No screenshots available.

Static Analysis

Nothing to display.

Dropped Files

country2region.json

Network Analysis

Hosts Involved

DNS Requests

Behavior Summary

Processes

registry filesystem process services network synchronization

C:\Windows\system32\lsass.exe PID: 456, Parent PID: 352

Volatility

Nothing to display.