ScreenShot
| Created | 2023.07.05 17:04 | Machine | s1_win7_x6402 |
| Filename | SErvKxEjge.msi | ||
| Type | Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Title: | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | |||
| VT API (file) | |||
| md5 | a70a3341d608bc64552ba5b3fcef5ec9 | ||
| sha256 | 6d54e005c033a0a276c2d3af08a4a7ede8fd0c3704be7031633cde9559f4e83e | ||
| ssdeep | 12288:kngZHY5A0Tqp4nbFr4RYAGOE3+0rMmrxBFInRxr+3yCQyhaKxPbC:kngZHY5AXp4bF+YlOmvJ6W1Bfx | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (2cnts)
| Level | Description |
|---|---|
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | One or more processes crashed |
Rules (2cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| info | CAB_file_format | CAB archive file | binaries (upload) |
| info | Microsoft_Office_File_Zero | Microsoft Office File | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|