Virusign
Info

Details for 44e904a59e3d54c12735e85f5bbd61804118d8e261ca80edbeca655aa9fe2852

Name勒索病毒样本grypon
Date (Y-m-d)2017-12-03
Size (Bytes)94720 (92.5KB)
FilePE32 executable (GUI) Intel 80386, for MS Windows
TrID43.5% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
29.8% (.EXE) Win32 Executable (generic) (4508/7/1)
13.2% (.EXE) Generic Win/DOS Executable (2002/3)
13.2% (.EXE) DOS Executable Generic (2000/1)
CRC32cabd6eae
MD5e50f2e8fe8b00dff83e2d3a272d3494d
SHA141b0a65ede280013dd49811c79b3a9f74516b667
SHA25644e904a59e3d54c12735e85f5bbd61804118d8e261ca80edbeca655aa9fe2852
ImpHashf86dec4a80961955a89e7ed62046cc0e
ImpFuzzy6:HGDYBJAEWj7GZRHmRlP7mRxn5XYbmRx2oE4AUn:mDoANj7GARlPqRJJBRgDU
SSDeep1536:mBwl+KXpsqN5vlwWYyhY9S4AOz/ZCd0/5n2F/N5kz+rwTSEd:Qw+asqN5aW/hLQz/cW/5n2F/N+zewm
Online Analysis 1x
Online Analysis 2x
Online Analysis 3http://sarvam.ece.ucsb.edu/analysis/e50f2e8fe8b00dff83e2d3a272d3494d
AV1 (ClamAV) StatusNo detection
AV2 AV3 AV4 AV5 AV6 AV7 StatusDetected on 2017-12-03
AV1 DetectionOK
AV1 Virus Signatures VersionClamAV 0.99.2/24136/Sun Dec 17 05:11:34 2017 (2017-12-17)
AV2 DetectionTrojan-Ransom.Crysis
AV2 Virus Signatures VersionVDB: 04.12.2017 08:38:12 (Build: 99972) (2017-12-04)
AV3 DetectionWin32:Malware-gen
AV3 Virus Signatures Version17120300 (2017-12-03)
AV4 DetectionTrojan horse Generic r.RJO
AV4 Virus Signatures Version4767/15180 Sun, 03 Dec 2017 09:00:00 +0000 (2017-12-03)
AV5 DetectionW32/S-0ca80a8a!Eldorado
AV5 Virus Signatures Version201712031058 (2017-12-03)
AV6 DetectionMal/Criakl-B
AV6 Virus Signatures Version5.46 28 November 2017 (2017-12-03)
AV7 DetectionGen:Variant.Ransom.Crysis.6(DB)
AV7 Virus Signatures Version7.74003 (2017-12-03)