Summary | ZeroBOX

DS_Store.exe

Generic Malware Malicious Packer UPX PE32 PE File
Category Machine Started Completed
FILE s1_win7_x6401 July 9, 2024, 6:49 p.m. July 9, 2024, 6:49 p.m.
Size 307.0KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 14df06539b72837adb9f8d13cfcea6db
SHA256 f77f73ebd9efa0dc88a9e1b013c36a5567fc9f39157645912cbd7900f177eb8b
CRC32 C3C3408C
ssdeep 3072:Yz/dDSMbWDhILjyCvJqxEm4x1ESuQG+3SeyRS6CSfKVu1xgCAWUMZSD:YLdDSMbWDeLjyCvoxEvTEPp/F
PDB Path cttune.pdb
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path cttune.pdb
resource name MUI
resource name WEVT_TEMPLATE
Bkav W32.AIDetectMalware
tehtris Generic.Malware
APEX Malicious
Rising Trojan.Generic@AI.89 (RDMK:cmRtazrnF3/GKE8zsnw4G/aqjuRR)
AhnLab-V3 Malware/Win.Generic.C5648133
Paloalto generic.ml
CrowdStrike win/malicious_confidence_60% (D)