比较分析...

分析任务

分析类型 虚拟机标签 开始时间 结束时间 持续时间
文件 (Windows) win7-sp1-x64-shaapp01-2 2019-09-12 15:38:50 2019-09-12 15:39:36 46 秒

魔盾分数

4.3875

可疑的

文件详细信息

文件名 Samp(9).exe
文件大小 185864 字节
文件类型 PE32 executable (GUI) Intel 80386, for MS Windows
MD5 b20669a50874c0d59864d15abf95d697
SHA1 2de0ab4219cef0bc998236507e3d3477e7adc3d3
SHA256 048ff62e4576aeadf87dfd2c360138d7a440bed666fb78b313cf09006f5bd980
SHA512 79b3315eb34f3865f278dda26253fa26efe98cf184347dc955f31e0151bf853478b7bd7c64a5a7a9b7ddacd6bd0be7a8ba993fd01e67b01ab0c87dcb94cc8ce5
CRC32 BA188554
Ssdeep 3072:2yUjZ0Eh5ermCjcxLh0RHItv9GTgwPOAg0Fuj8F3fqTlR6AJ:dUVbM7jM8Hv2AOkf2R6C
Yara 登录查看Yara规则
样本下载 提交漏报
登录查看威胁特征

运行截图

访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
88.99.66.31 英国

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
iplogger.org A 88.99.66.31

摘要

登录查看详细行为信息

PE 信息

初始地址 0x00400000
入口地址 0x00404bbc
声明校验值 0x0003ac68
实际校验值 0x00038610
最低操作系统版本要求 6.0
PDB路径 C:\Users\admin\Desktop\\xd0\x9d\xd0\xbe\xd0\xb2\xd0\xb0\xd1\x8f \xd0\xbf\xd0\xb0\xd0\xbf\xd0\xba\xd0\xb0 (2)\Release\ConsoleApp.pdb
编译时间 2019-09-04 04:56:48
载入哈希 3bdbd03b66e1db25a9b698acfb036d5b
图标
图标精确哈希值 a80a1118c9db18c669a10c6a177f2149
图标相似性哈希值 443b848b9c809a974d153b1720404c6c

版本信息

LegalCopyright
InternalName
FileVersion
CompanyName
Comments
ProductName
ProductVersion
FileDescription
OriginalFilename
Translation

PE 数据组成

名称 虚拟地址 虚拟大小 原始数据大小 特征 熵(Entropy)
.text 0x00001000 0x000191ff 0x00019200 IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ 6.66
.rdata 0x0001b000 0x0000eace 0x0000ec00 IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 5.31
.data 0x0002a000 0x00001d68 0x00000e00 IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 3.39
.rsrc 0x0002c000 0x00002510 0x00002600 IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 5.31
.reloc 0x0002f000 0x00001e78 0x00002000 IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ 6.45

覆盖

偏移量 0x0002d600
大小 0x00000008

资源

名称 偏移量 大小 语言 子语言 熵(Entropy) 文件类型
RT_ICON 0x0002dbe0 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL 5.21 GLS_BINARY_LSB_FIRST
RT_ICON 0x0002dbe0 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL 5.21 GLS_BINARY_LSB_FIRST
RT_ICON 0x0002dbe0 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL 5.21 GLS_BINARY_LSB_FIRST
RT_GROUP_ICON 0x0002e048 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL 2.50 MS Windows icon resource - 3 icons, 32x32
RT_VERSION 0x0002e078 0x00000318 LANG_NEUTRAL SUBLANG_NEUTRAL 3.34 data
RT_MANIFEST 0x0002e390 0x0000017d LANG_ENGLISH SUBLANG_ENGLISH_US 4.91 XML 1.0 document text

导入

库: KERNEL32.dll:
0x41b000 Sleep
0x41b004 LoadLibraryA
0x41b008 GetProcAddress
0x41b00c GetModuleFileNameA
0x41b010 GetShortPathNameA
0x41b014 lstrcpyA
0x41b018 lstrcatA
0x41b020 CreateFileW
0x41b024 WideCharToMultiByte
0x41b028 GetLastError
0x41b02c EncodePointer
0x41b030 DecodePointer
0x41b040 MultiByteToWideChar
0x41b044 SetLastError
0x41b04c SwitchToThread
0x41b050 TlsAlloc
0x41b054 TlsGetValue
0x41b058 TlsSetValue
0x41b05c TlsFree
0x41b064 GetModuleHandleW
0x41b068 LCMapStringW
0x41b06c GetLocaleInfoW
0x41b070 GetStringTypeW
0x41b074 GetCPInfo
0x41b080 GetCurrentProcess
0x41b084 TerminateProcess
0x41b090 GetCurrentProcessId
0x41b094 GetCurrentThreadId
0x41b098 InitializeSListHead
0x41b09c IsDebuggerPresent
0x41b0a0 GetStartupInfoW
0x41b0a4 RtlUnwind
0x41b0a8 RaiseException
0x41b0ac FreeLibrary
0x41b0b0 LoadLibraryExW
0x41b0b4 GetStdHandle
0x41b0b8 WriteFile
0x41b0bc GetModuleFileNameW
0x41b0c0 ExitProcess
0x41b0c4 GetModuleHandleExW
0x41b0c8 GetACP
0x41b0cc IsValidLocale
0x41b0d0 GetUserDefaultLCID
0x41b0d4 EnumSystemLocalesW
0x41b0d8 HeapFree
0x41b0dc HeapAlloc
0x41b0e0 GetFileType
0x41b0e4 CloseHandle
0x41b0e8 FlushFileBuffers
0x41b0ec GetConsoleCP
0x41b0f0 GetConsoleMode
0x41b0f4 ReadFile
0x41b0f8 ReadConsoleW
0x41b0fc SetFilePointerEx
0x41b100 HeapReAlloc
0x41b104 FindClose
0x41b108 FindFirstFileExW
0x41b10c FindNextFileW
0x41b110 IsValidCodePage
0x41b114 GetOEMCP
0x41b118 GetCommandLineA
0x41b11c GetCommandLineW
0x41b128 SetStdHandle
0x41b12c GetProcessHeap
0x41b130 HeapSize
0x41b134 WriteConsoleW
.text
`.rdata
@.data
.rsrc
@.reloc
ShPxB
tphpxB
Ph(yB
SVWUj
RPRQh
(%PoB
(5`oB
(-poB
bad allocation
address family not supported
address in use
address not available
already connected
argument list too long
argument out of domain
bad address
bad file descriptor
bad message
broken pipe
connection aborted
connection already in progress
connection refused
connection reset
cross device link
destination address required
device or resource busy
directory not empty
executable format error
file exists
file too large
filename too long
function not supported
host unreachable
identifier removed
illegal byte sequence
inappropriate io control operation
interrupted
invalid argument
invalid seek
io error
is a directory
message size
network down
network reset
network unreachable
no buffer space
no child process
no link
no lock available
no message available
no message
no protocol option
no space on device
no stream resources
no such device or address
no such device
no such file or directory
no such process
not a directory
not a socket
not a stream
not connected
not enough memory
not supported
operation canceled
operation in progress
operation not permitted
operation not supported
operation would block
owner dead
permission denied
protocol error
protocol not supported
read only file system
resource deadlock would occur
resource unavailable try again
result out of range
state not recoverable
stream timeout
text file busy
timed out
too many files open in system
too many files open
too many links
too many symbolic link levels
value too large
wrong protocol type
unknown error
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
InitializeCriticalSectionEx
InitOnceExecuteOnce
CreateEventExW
CreateSemaphoreW
CreateSemaphoreExW
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
FlushProcessWriteBuffers
FreeLibraryWhenCallbackReturns
GetCurrentProcessorNumber
CreateSymbolicLinkW
GetCurrentPackageId
GetTickCount64
GetFileInformationByHandleEx
SetFileInformationByHandle
GetSystemTimePreciseAsFileTime
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
InitializeSRWLock
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
ReleaseSRWLockExclusive
SleepConditionVariableSRW
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
CompareStringEx
GetLocaleInfoEx
LCMapStringEx
0123456789abcdefghijklmnopqrstuvwxyz
0123456789abcdefghijklmnopqrstuvwxyz
bad array new length
bad exception
__based(
__cdecl
__pascal
__stdcall
__thiscall
__fastcall
__vectorcall
__clrcall
__eabi
__swift_1
__swift_2
__ptr64
__restrict
__unaligned
restrict(
delete
operator
`vftable'
`vbtable'
`vcall'
`typeof'
`local static guard'
`string'
`vbase destructor'
`vector deleting destructor'
`default constructor closure'
`scalar deleting destructor'
`vector constructor iterator'
`vector destructor iterator'
`vector vbase constructor iterator'
`virtual displacement map'
`eh vector constructor iterator'
`eh vector destructor iterator'
`eh vector vbase constructor iterator'
`copy constructor closure'
`udt returning'
`RTTI
`local vftable'
`local vftable constructor closure'
new[]
delete[]
`omni callsig'
`placement delete closure'
`placement delete[] closure'
`managed vector constructor iterator'
`managed vector destructor iterator'
`eh vector copy constructor iterator'
`eh vector vbase copy constructor iterator'
`dynamic initializer for '
`dynamic atexit destructor for '
`vector copy constructor iterator'
`vector vbase copy constructor iterator'
`managed vector copy constructor iterator'
`local static thread guard'
operator ""
operator co_await
Type Descriptor'
Base Class Descriptor at (
Base Class Array'
Class Hierarchy Descriptor'
Complete Object Locator'
CorExitProcess
AreFileApisANSI
CompareStringEx
EnumSystemLocalesEx
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
GetDateFormatEx
GetLocaleInfoEx
GetTimeFormatEx
GetUserDefaultLocaleName
InitializeCriticalSectionEx
IsValidLocaleName
LCMapStringEx
LCIDToLocaleName
LocaleNameToLCID
AppPolicyGetProcessTerminationMethod
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
January
February
March
April
August
September
October
November
December
MM/dd/yy
dddd, MMMM dd, yyyy
HH:mm:ss
log10
atan2
floor
ldexp
_cabs
_hypot
frexp
_logb
_nextafter
kernel32.dll
zh-CHS
ar-SA
bg-BG
ca-ES
zh-TW
cs-CZ
da-DK
de-DE
el-GR
en-US
fi-FI
fr-FR
he-IL
hu-HU
is-IS
it-IT
ja-JP
ko-KR
nl-NL
nb-NO
pl-PL
pt-BR
ro-RO
ru-RU
hr-HR
sk-SK
sq-AL
sv-SE
th-TH
tr-TR
ur-PK
id-ID
uk-UA
be-BY
sl-SI
et-EE
lv-LV
lt-LT
fa-IR
vi-VN
hy-AM
az-AZ-Latn
eu-ES
mk-MK
tn-ZA
xh-ZA
zu-ZA
af-ZA
ka-GE
fo-FO
hi-IN
mt-MT
se-NO
ms-MY
kk-KZ
ky-KG
sw-KE
uz-UZ-Latn
tt-RU
bn-IN
pa-IN
gu-IN
ta-IN
te-IN
kn-IN
ml-IN
mr-IN
sa-IN
mn-MN
cy-GB
gl-ES
kok-IN
syr-SY
div-MV
quz-BO
ns-ZA
mi-NZ
ar-IQ
zh-CN
de-CH
en-GB
es-MX
fr-BE
it-CH
nl-BE
nn-NO
pt-PT
sr-SP-Latn
sv-FI
az-AZ-Cyrl
se-SE
ms-BN
uz-UZ-Cyrl
quz-EC
ar-EG
zh-HK
de-AT
en-AU
es-ES
fr-CA
sr-SP-Cyrl
se-FI
quz-PE
ar-LY
zh-SG
de-LU
en-CA
es-GT
fr-CH
hr-BA
smj-NO
ar-DZ
zh-MO
de-LI
en-NZ
es-CR
fr-LU
bs-BA-Latn
smj-SE
ar-MA
en-IE
es-PA
fr-MC
sr-BA-Latn
sma-NO
ar-TN
en-ZA
es-DO
sr-BA-Cyrl
sma-SE
ar-OM
en-JM
es-VE
sms-FI
ar-YE
en-CB
es-CO
smn-FI
ar-SY
en-BZ
es-PE
ar-JO
en-TT
es-AR
ar-LB
en-ZW
es-EC
ar-KW
en-PH
es-CL
ar-AE
es-UY
ar-BH
es-PY
ar-QA
es-BO
es-SV
es-HN
es-NI
es-PR
zh-CHT
af-za
ar-ae
ar-bh
ar-dz
ar-eg
ar-iq
ar-jo
ar-kw
ar-lb
ar-ly
ar-ma
ar-om
ar-qa
ar-sa
ar-sy
ar-tn
ar-ye
az-az-cyrl
az-az-latn
be-by
bg-bg
bn-in
bs-ba-latn
ca-es
cs-cz
cy-gb
da-dk
de-at
de-ch
de-de
de-li
de-lu
div-mv
el-gr
en-au
en-bz
en-ca
en-cb
en-gb
en-ie
en-jm
en-nz
en-ph
en-tt
en-us
en-za
en-zw
es-ar
es-bo
es-cl
es-co
es-cr
es-do
es-ec
es-es
es-gt
es-hn
es-mx
es-ni
es-pa
es-pe
es-pr
es-py
es-sv
es-uy
es-ve
et-ee
eu-es
fa-ir
fi-fi
fo-fo
fr-be
fr-ca
fr-ch
fr-fr
fr-lu
fr-mc
gl-es
gu-in
he-il
hi-in
hr-ba
hr-hr
hu-hu
hy-am
id-id
is-is
it-ch
it-it
ja-jp
ka-ge
kk-kz
kn-in
ko-kr
kok-in
ky-kg
lt-lt
lv-lv
mi-nz
mk-mk
ml-in
mn-mn
mr-in
ms-bn
ms-my
mt-mt
nb-no
nl-be
nl-nl
nn-no
ns-za
pa-in
pl-pl
pt-br
pt-pt
quz-bo
quz-ec
quz-pe
ro-ro
ru-ru
sa-in
se-fi
se-no
se-se
sk-sk
sl-si
sma-no
sma-se
smj-no
smj-se
smn-fi
sms-fi
sq-al
sr-ba-cyrl
sr-ba-latn
sr-sp-cyrl
sr-sp-latn
sv-fi
sv-se
sw-ke
syr-sy
ta-in
te-in
th-th
tn-za
tr-tr
tt-ru
uk-ua
ur-pk
uz-uz-cyrl
uz-uz-latn
vi-vn
xh-za
zh-chs
zh-cht
zh-cn
zh-hk
zh-mo
zh-sg
zh-tw
zu-za
Aapi-ms-win-core-fibers-l1-1-1
api-ms-win-core-synch-l1-2-0
kernel32
api-ms-
ext-ms-
mscoree.dll
ALC_ALL
LC_COLLATE
LC_CTYPE
LC_MONETARY
LC_NUMERIC
LC_TIME
Aapi-ms-win-core-datetime-l1-1-1
api-ms-win-core-fibers-l1-1-1
api-ms-win-core-file-l1-2-2
api-ms-win-core-localization-l1-2-1
api-ms-win-core-localization-obsolete-l1-2-0
api-ms-win-core-processthreads-l1-1-2
api-ms-win-core-string-l1-1-0
api-ms-win-core-synch-l1-2-0
api-ms-win-core-sysinfo-l1-2-1
api-ms-win-core-winrt-l1-1-0
api-ms-win-core-xstate-l2-1-0
api-ms-win-rtcore-ntuser-window-l1-1-0
api-ms-win-security-systemfunctions-l1-1-0
ext-ms-win-ntuser-dialogbox-l1-1-0
ext-ms-win-ntuser-windowstation-l1-1-0
advapi32
kernel32
ntdll
api-ms-win-appmodel-runtime-l1-1-2
user32
api-ms-
ext-ms-
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
January
February
March
April
August
September
October
November
December
MM/dd/yy
dddd, MMMM dd, yyyy
HH:mm:ss
en-US
Bja-JP
zh-CN
ko-KR
zh-TW
american
american english
american-english
australian
belgian
canadian
chinese
chinese-hongkong
chinese-simplified
chinese-singapore
chinese-traditional
dutch-belgian
english-american
english-aus
english-belize
english-can
english-caribbean
english-ire
english-jamaica
english-nz
english-south africa
english-trinidad y tobago
english-uk
english-us
english-usa
french-belgian
french-canadian
french-luxembourg
french-swiss
german-austrian
german-lichtenstein
german-luxembourg
german-swiss
irish-english
italian-swiss
norwegian
norwegian-bokmal
norwegian-nynorsk
portuguese-brazilian
spanish-argentina
spanish-bolivia
spanish-chile
spanish-colombia
spanish-costa rica
spanish-dominican republic
spanish-ecuador
spanish-el salvador
spanish-guatemala
spanish-honduras
spanish-mexican
spanish-modern
spanish-nicaragua
spanish-panama
spanish-paraguay
spanish-peru
spanish-puerto rico
spanish-uruguay
spanish-venezuela
swedish-finland
swiss
america
britain
china
czech
england
great britain
holland
hong-kong
new-zealand
pr china
pr-china
puerto-rico
slovak
south africa
south korea
south-africa
south-korea
trinidad & tobago
united-kingdom
united-states
没有防病毒引擎扫描信息!

进程树

Samp_9_.exe, PID: 2752, 上一级进程 PID: 2412
cmd.exe, PID: 2924, 上一级进程 PID: 2752
powershell.exe, PID: 3044, 上一级进程 PID: 2924
下载PCAP包

访问主机纪录 (可点击查询WPING实时安全评级)

直接 IP 安全评级 地理位置
88.99.66.31 英国

TCP

源地址 源端口 目标地址 目标端口
192.168.122.202 49162 88.99.66.31 iplogger.org 443

UDP

源地址 源端口 目标地址 目标端口
192.168.122.202 57325 192.168.122.1 53

域名解析 (可点击查询WPING实时安全评级)

域名 安全评级 响应
iplogger.org A 88.99.66.31

TCP

源地址 源端口 目标地址 目标端口
192.168.122.202 49162 88.99.66.31 iplogger.org 443

UDP

源地址 源端口 目标地址 目标端口
192.168.122.202 57325 192.168.122.1 53

HTTP 请求

未发现HTTP请求.

SMTP 流量

无SMTP流量.

IRC 流量

无IRC请求.

ICMP 流量

无ICMP流量.

CIF 报告

无 CIF 结果

网络警报

无警报

TLS

Timestamp Source IP Source Port Destination IP Destination Port Version Issuer Subject Fingerprint
2019-09-12 15:39:11.908687+0800 192.168.122.202 49162 88.99.66.31 443 TLSv1 C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3 CN=iplogger.com 6b:aa:bc:1c:da:f6:3f:99:9e:cc:8a:6a:d8:15:22:24:cc:db:d1:03

Suricata HTTP

No Suricata HTTP

未发现网络提取文件
抱歉! 没有任何文件投放。
没有发现相似的分析.
HTML 总结报告
(需15-60分钟同步)		 下载

Processing ( 15.8 seconds )

  • 9.819 Suricata
  • 2.745 NetworkAnalysis
  • 1.898 BehaviorAnalysis
  • 0.555 Static
  • 0.313 peid
  • 0.249 VirusTotal
  • 0.195 TargetInfo
  • 0.013 AnalysisInfo
  • 0.011 Strings
  • 0.002 Memory

Signatures ( 1.011 seconds )

  • 0.2 antiav_detectreg
  • 0.086 api_spamming
  • 0.073 stealth_timeout
  • 0.073 infostealer_ftp
  • 0.069 stealth_decoy_document
  • 0.043 infostealer_im
  • 0.041 antianalysis_detectreg
  • 0.025 infostealer_mail
  • 0.024 antivm_generic_scsi
  • 0.023 antiav_detectfile
  • 0.016 infostealer_bitcoin
  • 0.013 mimics_filetime
  • 0.012 antivm_generic_services
  • 0.012 reads_self
  • 0.011 kibex_behavior
  • 0.011 antivm_generic_disk
  • 0.011 virus
  • 0.011 md_domain_bl
  • 0.01 bootkit
  • 0.01 stealth_file
  • 0.01 anormaly_invoke_kills
  • 0.01 antivm_parallels_keys
  • 0.01 antivm_xen_keys
  • 0.01 darkcomet_regkeys
  • 0.009 betabot_behavior
  • 0.009 antivm_vbox_files
  • 0.009 geodo_banking_trojan
  • 0.009 md_url_bl
  • 0.008 recon_fingerprint
  • 0.007 hancitor_behavior
  • 0.007 antivm_generic_diskreg
  • 0.006 kovter_behavior
  • 0.005 antiemu_wine_func
  • 0.005 anomaly_persistence_autorun
  • 0.005 infostealer_browser_password
  • 0.005 antisandbox_productid
  • 0.004 maldun_anomaly_massive_file_ops
  • 0.004 injection_createremotethread
  • 0.004 shifu_behavior
  • 0.004 antidbg_devices
  • 0.004 ransomware_extensions
  • 0.004 ransomware_files
  • 0.003 network_tor
  • 0.003 antivm_vbox_libs
  • 0.003 injection_runpe
  • 0.003 bypass_firewall
  • 0.003 antivm_generic_system
  • 0.003 antivm_xen_keys
  • 0.003 antivm_hyperv_keys
  • 0.003 antivm_vbox_acpi
  • 0.003 antivm_vbox_keys
  • 0.003 antivm_vmware_keys
  • 0.003 antivm_vpc_keys
  • 0.003 maldun_anormaly_invoke_vb_vba
  • 0.003 packer_armadillo_regkey
  • 0.002 tinba_behavior
  • 0.002 hawkeye_behavior
  • 0.002 rat_nanocore
  • 0.002 Locky_behavior
  • 0.002 antisandbox_sunbelt_libs
  • 0.002 dyre_behavior
  • 0.002 exec_crash
  • 0.002 antivm_generic_bios
  • 0.002 antivm_generic_cpu
  • 0.002 disables_browser_warn
  • 0.002 network_torgateway
  • 0.002 rat_pcclient
  • 0.002 recon_programs
  • 0.001 antiav_avast_libs
  • 0.001 infostealer_browser
  • 0.001 maldun_malicious_write_executeable_under_temp_to_regrun
  • 0.001 dridex_behavior
  • 0.001 rat_luminosity
  • 0.001 anomaly_persistence_bootexecute
  • 0.001 antivm_vmware_libs
  • 0.001 anomaly_reset_winsock
  • 0.001 kazybot_behavior
  • 0.001 antisandbox_sboxie_libs
  • 0.001 antiav_bitdefender_libs
  • 0.001 maldun_anomaly_write_exe_and_dll_under_winroot_run
  • 0.001 encrypted_ioc
  • 0.001 cerber_behavior
  • 0.001 sniffer_winpcap
  • 0.001 antianalysis_detectfile
  • 0.001 antivm_vmware_files
  • 0.001 bot_drive
  • 0.001 bot_drive2
  • 0.001 browser_security
  • 0.001 modify_proxy
  • 0.001 codelux_behavior
  • 0.001 malicous_targeted_flame
  • 0.001 md_bad_drop

Reporting ( 0.487 seconds )

  • 0.438 ReportHTMLSummary
  • 0.049 Malheur
Task ID 372266
Mongo ID 5d79f652bb7d5770d9a154c0
Cuckoo release 1.4-Maldun