Report - Personal.zip

ZIP Format

ScreenShot

Info
Location map


Created	2023.05.25 10:21	Machine	s1_win7_x6402
Filename	Personal.zip
Type	Zip archive data, at least v2.0 to extract
AI Score	Not founds	Behavior Score	0.6
ZERO API	file : malware
VT API (file)	11 detected (Nioc, ai score=88, Probably Heur, LNKScript, Mshta, CLASSIC)
md5	05eb7152bc79936bea431a4d8c97fb7b
sha256	780192de36d754945488f994f97a6ad9cecf57289234477e758d1c3d21fb8c9b
ssdeep	12288:uyllLViInKdWLMNgfB3tB6llLViInKdWLMNgfB3tpU33n:eoKd9iToKd9iY33n
imphash
impfuzzy

Network IP location

Signature (1cnts)

Level	Description
watch	File has been identified by 11 AntiVirus engines on VirusTotal as malicious

Rules (1cnts)

Level	Name	Description	Collection
info	zip_file_format	ZIP file format	binaries (upload)

Network (2cnts) ?

Request	CC	ASN Co	IP4	Rule ?	ZERO ?
elfinindia.com whois		UNIFIEDLAYER-AS-1	162.241.85.104		malware
162.241.85.104 whois		UNIFIEDLAYER-AS-1	162.241.85.104		mailcious

Suricata ids

Similarity measure (PE file only) - Checking for service failure