Report - TAOBRAVE20-2NDSOA.cab

ScreenShot

Info
Location map


Created	2021.05.19 13:47	Machine	s1_win7_x6401
Filename	TAOBRAVE20-2NDSOA.cab
Type	Microsoft Cabinet archive data, 378383 bytes, 1 file
AI Score	Not founds	Behavior Score	0.8
ZERO API	file : mailcious
VT API (file)	22 detected (Bulz, Artemis, Save, ZemsilCO, Fm0@a8a6X6o, Kryptik, AAYK, R06CC0WEI21, RATX, Seraph, DrodCab, Static AI, Malicious Archive, Woreflint, ai score=80, CLOUD, GdSda)
md5	76c676330782ef31d6ca09faa5e5262d
sha256	4209b5eeee8c41e87a6776647c4629118d1c5d2809a6c112d7e925c228258f30
ssdeep	6144:iPOclJtriBEALjQu581gDvFnhVhGEGiBFJ05h4SwY7svdGW0bJoq3reAsXyoF+X:kOOJtuFL8D1gDvFhVhHX+4SwkFTJoyee
imphash
impfuzzy

Network IP location

Signature (1cnts)

Level	Description
warning	File has been identified by 22 AntiVirus engines on VirusTotal as malicious

Rules (0cnts)

Level	Name	Description	Collection

Network (0cnts) ?

Request	CC	ASN Co	IP4	Rule ?	ZERO ?

Suricata ids

Similarity measure (PE file only) - Checking for service failure