'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2018-07-23 16:08:54.415975 2018-07-23 16:09:23.064543 28 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo win7 Clone 1 VirtualBox 2018-07-23 16:08:55 2018-07-23 16:09:22

Errors

File Details

File name 031a3c9eae4b02be53e6aa2f89fc89cdb0f08715.exe
File size 1130840 bytes
File type PE32 executable (GUI) Intel 80386, for MS Windows
CRC32 348FF752
MD5 66175c766708bafec98d934ad4283a20
SHA1 031a3c9eae4b02be53e6aa2f89fc89cdb0f08715
SHA256 0e67897d0cfea9db8231cced7b3683c96f37eda062a6547a3536d6c0e2ce1a78
SHA512 6e9497b1fdc075795ef3542c3870e2612426eb21aa081fbdf82c9df974ae8566d869be2c68621264a4e65f5f91652e021d5fa5a61a871c7eb7d8d018eb9d6257
Ssdeep None
PEiD None matched
Yara None matched
VirusTotal File not found on VirusTotal

MetaFlows Scores

Metaflows Analysis Results (Signatures=75, Anomalies=0, PEiD=0, Yara=0, VT[1532376567]=0): Snort Events=0, AV Events=0
Total Score=75

Signatures

pe_features details
origin_langid details
packer_entropy details
nolookup_communication details

Screenshots

No screenshots available.

Static Analysis

Sections

Resources

Imports

Strings

Dropped Files

Nothing to display.

Network Analysis

Hosts Involved

DNS Requests

HTTP Requests

Behavior Summary

Processes

registry filesystem process services network synchronization

C:\Windows\system32\lsass.exe PID: 480, Parent PID: 384

Volatility

Nothing to display.