'
metaflows logo
Category Started On Completed On Duration Cuckoo Version
FILE 2018-09-16 09:49:53.843875 2018-09-16 09:52:04.964054 131 seconds 2.0-dev
Machine Label Manager Started On Shutdown On
win7cuckoo2 win7 Clone 2 VirtualBox 2018-09-16 09:49:54 2018-09-16 09:52:04

File Details

File name 70402162c7d8ba0e0ba47d6b342bffee8d91e5cd.exe
File size 16928768 bytes
File type PE32 executable (GUI) Intel 80386, for MS Windows
CRC32 0294A495
MD5 867314b2b72d59ea51d775d5ee3b804e
SHA1 70402162c7d8ba0e0ba47d6b342bffee8d91e5cd
SHA256 d5c7084b43f08e5aeec315495aab3718ff709d2d918b7b3c8290ce14ccacb747
SHA512 09dd1e268e2f149f5b279a5a27cb9bd4ad6e3f642a9d1cda9e41c83e7626c1535e28caa814a6588a6e713ed7540d23e8744b7fb3625cb9d39c8f79d7c294b3b0
Ssdeep None
PEiD None matched
Yara None matched
VirusTotal Permalink
VirusTotal Scan Date: 2018-05-26 03:13:14
Detection Rate: 1/65 (Expand)

MetaFlows Scores

Metaflows Analysis Results (Signatures=75, Anomalies=0, PEiD=0, Yara=0, VT[1537105998]=0): Snort Events=0, AV Events=0
Total Score=75

Dropped File/Buffer Yara Signatures:
4c17b035b20f1145_data2.cab: shellcode

Signatures

pe_features details
allocates_rwx details
spreading_autoruninf details
creates_doc details
packer_entropy details
nolookup_communication details
ransomware_message details

Screenshots

No screenshots available.

Static Analysis

Sections

Resources

Imports

Strings