ScreenShot
| Created | 2025.01.20 04:20 | Machine | s1_win7_x6401 |
| Filename | strings_output.txt | ||
| Type | GIF image data, version 89a, 27146 x 24899 | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | 0d7e00f4e189261b7936769f8cb54fad | ||
| sha256 | 0f84aeb9940898d9007c6369efd3cb92d6b152c6d22f05d11d1ef333cb64d7f2 | ||
| ssdeep | 98304:10Vr5oPo1aZVtkfT1VPtkfIRzTALcURiI9Ayf:10dqPo1aZVtkfT1VPtkfkm | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (1cnts)
| Level | Description |
|---|---|
| info | One or more processes crashed |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | ASPack_Zero | ASPack packed file | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | ftp_command | ftp command | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|