Cuckoo Sandbox

File 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe

Summary
Download Resubmit sample

Size	2.0MB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`cd398e98ebac44827b79805497042a5e`
SHA1	`5fa21e9c7d2c17c3804adf8110d566558e40cbb2`
SHA256	`06e211ae2e71eb2adf3e5842606625ccc4004914f9fd60b4b5584ea0c14280fe`
SHA512	`cc363e8e877e162d46883f8b89be7337417ab4ce9eea07de1ad6a3d969cd7893a8a26c176d19c9fb9e2d2e16f0ac4c6cdbbc2f25b40f4c30cadfb56e0d87b427`
CRC32	`DF5E61A4`
ssdeep	`None`
Yara	DebuggerException__SetConsoleCtrl - (no description) win_mutex - Create or check mutex win_registry - Affect system registries win_files_operation - Affect private profile

Score

This file is very suspicious, with a score of 10 out of 10!

Please notice: The scoring system is currently still in development and should be considered an alpha feature.

Autosubmit

Parent_Task_ID:7269181

Feedback

Expecting different results? Send us this analysis and we will inspect it. Click here

Information on Execution

Analysis

Category	Started	Completed	Duration	Routing	Logs
FILE	Dec. 27, 2025, 1:17 p.m.	Dec. 27, 2025, 1:24 p.m.	418 seconds	internet	Show Analyzer Log Show Cuckoo Log

Analyzer Log

2025-12-27 09:19:43,000 [analyzer] DEBUG: Starting analyzer from: C:\tmpdyrg_l
2025-12-27 09:19:43,015 [analyzer] DEBUG: Pipe server name: \??\PIPE\sIKEipWRZezukecYYlpeWVvVYw
2025-12-27 09:19:43,015 [analyzer] DEBUG: Log pipe server name: \??\PIPE\QQGuyfHRodJmpTLpacAcYY
2025-12-27 09:19:43,015 [analyzer] DEBUG: No analysis package specified, trying to detect it automagically.
2025-12-27 09:19:43,046 [analyzer] INFO: Automatically selected analysis package "exe"
2025-12-27 09:19:43,312 [analyzer] DEBUG: Started auxiliary module Curtain
2025-12-27 09:19:43,312 [analyzer] DEBUG: Started auxiliary module DbgView
2025-12-27 09:19:43,796 [analyzer] DEBUG: Started auxiliary module Disguise
2025-12-27 09:19:44,046 [analyzer] DEBUG: Loaded monitor into process with pid 500
2025-12-27 09:19:44,046 [analyzer] DEBUG: Started auxiliary module DumpTLSMasterSecrets
2025-12-27 09:19:44,046 [analyzer] DEBUG: Started auxiliary module Human
2025-12-27 09:19:44,046 [analyzer] DEBUG: Started auxiliary module InstallCertificate
2025-12-27 09:19:44,046 [analyzer] DEBUG: Started auxiliary module Reboot
2025-12-27 09:19:44,140 [analyzer] DEBUG: Started auxiliary module RecentFiles
2025-12-27 09:19:44,140 [analyzer] DEBUG: Started auxiliary module Screenshots
2025-12-27 09:19:44,140 [analyzer] DEBUG: Started auxiliary module Sysmon
2025-12-27 09:19:44,140 [analyzer] DEBUG: Started auxiliary module LoadZer0m0n
2025-12-27 09:19:44,296 [lib.api.process] INFO: Successfully executed process from path u'C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe' with arguments '' and pid 2792
2025-12-27 09:19:44,467 [analyzer] DEBUG: Loaded monitor into process with pid 2792
2025-12-27 09:19:44,578 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Windows\mssrv.exe
2025-12-27 09:19:44,671 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\Common Files\Microsoft Shared\danish fetish hardcore hot (!) shoes .mpg.exe
2025-12-27 09:19:44,953 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\DVD Maker\Shared\american beastiality lingerie lesbian blondie .mpeg.exe
2025-12-27 09:19:45,296 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\Microsoft Office\Templates\russian horse beast [free] sm  (Sandy,Melissa).mpeg.exe
2025-12-27 09:19:45,328 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\indian action beast lesbian  (Liz).mpg.exe
2025-12-27 09:19:45,467 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\Windows Journal\Templates\american action bukkake hot (!)  (Samantha).rar.exe
2025-12-27 09:19:45,608 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files\Windows Sidebar\Shared Gadgets\trambling catfight girly .avi.exe
2025-12-27 09:19:45,671 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\tyrkish fetish trambling hot (!) femdom  (Anniston,Janette).zip.exe
2025-12-27 09:19:45,796 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files (x86)\Common Files\microsoft shared\swedish fetish hardcore [milf] feet .mpg.exe
2025-12-27 09:19:46,155 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Program Files (x86)\Windows Sidebar\Shared Gadgets\danish beastiality blowjob hot (!)  (Tatjana).mpg.exe
2025-12-27 09:19:46,233 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Network\Downloader\american beastiality gay masturbation sweet .mpeg.exe
2025-12-27 09:19:46,265 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\RAC\Temp\tyrkish animal lesbian [bangbus] titts castration  (Karin).zip.exe
2025-12-27 09:19:46,312 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Search\Data\Temp\blowjob [milf]  (Samantha).avi.exe
2025-12-27 09:19:46,421 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Windows\Templates\italian action bukkake uncut glans .zip.exe
2025-12-27 09:19:46,562 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Windows\Templates\italian kicking trambling full movie glans 50+  (Jade).mpg.exe
2025-12-27 09:19:46,717 [analyzer] INFO: Injected into process with pid 2584 and name ''
2025-12-27 09:19:46,890 [analyzer] DEBUG: Loaded monitor into process with pid 2584
2025-12-27 09:19:47,140 [analyzer] INFO: Added new file to list with pid 2792 and path C:\tmpdyrg_l\lingerie hot (!) .zip.exe
2025-12-27 09:19:47,296 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\indian nude beast full movie leather  (Jenna,Liz).mpeg.exe
2025-12-27 09:19:47,375 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Local\Temp\japanese handjob trambling public .avi.exe
2025-12-27 09:19:47,405 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Local\Temp\mozilla-temp-files\sperm uncut feet redhair .mpeg.exe
2025-12-27 09:19:47,467 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\danish action horse girls upskirt .rar.exe
2025-12-27 09:19:47,671 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\blowjob voyeur fishy .rar.exe
2025-12-27 09:19:47,750 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\IEDownloadHistory\hardcore sleeping  (Sylvia).mpeg.exe
2025-12-27 09:19:47,796 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\indian horse horse [free] cock .mpg.exe
2025-12-27 09:19:47,842 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\Downloads\black nude trambling public swallow .mpeg.exe
2025-12-27 09:19:47,890 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\indian horse sperm hidden castration  (Sandy,Sylvia).zip.exe
2025-12-27 09:19:47,983 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Network\Downloader\fucking big hole .avi.exe
2025-12-27 09:19:48,030 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\RAC\Temp\japanese porn fucking lesbian feet black hairunshaved .mpg.exe
2025-12-27 09:19:48,062 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Search\Data\Temp\hardcore lesbian .zip.exe
2025-12-27 09:19:48,140 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Windows\Templates\russian porn lingerie hidden ejaculation .zip.exe
2025-12-27 09:19:48,217 [analyzer] INFO: Added new file to list with pid 2792 and path C:\ProgramData\Microsoft\Windows\Templates\gay hot (!) cock blondie .mpg.exe
2025-12-27 09:19:48,250 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\xxx hidden blondie .avi.exe
2025-12-27 09:19:48,280 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\AppData\Local\Temp\xxx catfight bondage .avi.exe
2025-12-27 09:19:48,312 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\american handjob blowjob several models  (Sarah).mpg.exe
2025-12-27 09:19:48,358 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates\black nude blowjob voyeur .mpg.exe
2025-12-27 09:19:48,405 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\Downloads\hardcore hot (!) shoes .mpeg.exe
2025-12-27 09:19:48,437 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates\swedish porn fucking [milf] .rar.exe
2025-12-27 09:19:48,467 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Users\Public\Downloads\russian horse beast several models  (Samantha).mpg.exe
2025-12-27 09:19:48,578 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor\danish action sperm voyeur .mpg.exe
2025-12-27 09:19:48,592 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor.Resources\gay lesbian beautyfull .avi.exe
2025-12-27 09:19:48,703 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor\lingerie licking hole  (Sonja,Janette).mpg.exe
2025-12-27 09:19:48,733 [analyzer] INFO: Added new file to list with pid 2792 and path C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor.Resources\japanese gang bang beast [milf] boots  (Britney,Sylvia).zip.exe
2025-12-27 12:22:13,421 [analyzer] INFO: Analysis timeout hit, terminating analysis.
2025-12-27 12:22:16,451 [analyzer] INFO: Terminating remaining processes before shutdown.
2025-12-27 12:22:16,451 [lib.api.process] INFO: Successfully terminated process with pid 2792.
2025-12-27 12:22:16,451 [lib.api.process] INFO: Successfully terminated process with pid 2584.
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\windows\assembly\gac_32\microsoft.grouppolicy.admtmpleditor\danish action sperm voyeur .mpg.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\program files\dvd maker\shared\american beastiality lingerie lesbian blondie .mpeg.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\programdata\microsoft\search\data\temp\hardcore lesbian .zip.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\users\default\appdata\roaming\microsoft\windows\templates\black nude blowjob voyeur .mpg.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\users\administrator\appdata\local\temp\mozilla-temp-files\sperm uncut feet redhair .mpeg.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\programdata\microsoft\rac\temp\japanese porn fucking lesbian feet black hairunshaved .mpg.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\programdata\microsoft\search\data\temp\blowjob [milf]  (samantha).avi.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\users\administrator\appdata\roaming\macromedia\flash player\#sharedobjects\blowjob voyeur fishy .rar.exe
2025-12-27 12:22:18,499 [analyzer] WARNING: Too many files: c:\programdata\microsoft\windows\templates\russian porn lingerie hidden ejaculation .zip.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\users\administrator\appdata\local\microsoft\windows\temporary internet files\danish action horse girls upskirt .rar.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\program files\windows journal\templates\american action bukkake hot (!)  (samantha).rar.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\users\default\downloads\hardcore hot (!) shoes .mpeg.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\programdata\microsoft\network\downloader\american beastiality gay masturbation sweet .mpeg.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\users\default\appdata\roaming\microsoft\windows\templates\swedish porn fucking [milf] .rar.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\windows\assembly\gac_64\microsoft.grouppolicy.admtmpleditor.resources\japanese gang bang beast [milf] boots  (britney,sylvia).zip.exe
2025-12-27 12:22:18,513 [analyzer] WARNING: Too many files: c:\windows\assembly\gac_64\microsoft.grouppolicy.admtmpleditor\lingerie licking hole  (sonja,janette).mpg.exe
2025-12-27 12:22:18,513 [analyzer] INFO: Analysis completed.

Cuckoo Log

2025-12-27 13:17:20,861 [cuckoo.core.scheduler] DEBUG: Task #7269373: no machine available yet
2025-12-27 13:17:21,879 [cuckoo.core.scheduler] DEBUG: Task #7269373: no machine available yet
2025-12-27 13:17:22,896 [cuckoo.core.scheduler] DEBUG: Task #7269373: no machine available yet
2025-12-27 13:17:23,938 [cuckoo.core.scheduler] INFO: Task #7269373: acquired machine win7x6430 (label=win7x6430)
2025-12-27 13:17:23,939 [cuckoo.core.resultserver] DEBUG: Now tracking machine 192.168.168.230 for task #7269373
2025-12-27 13:17:24,331 [cuckoo.auxiliary.sniffer] INFO: Started sniffer with PID 2891515 (interface=vboxnet0, host=192.168.168.230)
2025-12-27 13:17:28,065 [cuckoo.machinery.virtualbox] DEBUG: Starting vm win7x6430
2025-12-27 13:17:28,940 [cuckoo.machinery.virtualbox] DEBUG: Restoring virtual machine win7x6430 to vmcloak
2025-12-27 13:18:45,182 [cuckoo.core.guest] INFO: Starting analysis #7269373 on guest (id=win7x6430, ip=192.168.168.230)
2025-12-27 13:18:46,187 [cuckoo.core.guest] DEBUG: win7x6430: not ready yet
2025-12-27 13:18:51,220 [cuckoo.core.guest] INFO: Guest is running Cuckoo Agent 0.10 (id=win7x6430, ip=192.168.168.230)
2025-12-27 13:18:51,708 [cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=win7x6430, ip=192.168.168.230, monitor=latest, size=6660546)
2025-12-27 13:18:53,112 [cuckoo.core.resultserver] DEBUG: Task #7269373: live log analysis.log initialized.
2025-12-27 13:18:54,127 [cuckoo.core.resultserver] DEBUG: Task #7269373 is sending a BSON stream
2025-12-27 13:18:54,516 [cuckoo.core.resultserver] DEBUG: Task #7269373 is sending a BSON stream
2025-12-27 13:18:55,489 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'shots/0001.jpg'
2025-12-27 13:18:55,515 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 133498
2025-12-27 13:18:56,938 [cuckoo.core.resultserver] DEBUG: Task #7269373 is sending a BSON stream
2025-12-27 13:19:07,807 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:19:23,007 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:19:38,141 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:19:53,257 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:20:08,380 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:20:23,516 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:20:38,760 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:20:54,105 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:21:09,291 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:21:24,769 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:21:39,869 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:21:55,064 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:22:10,324 [cuckoo.core.guest] DEBUG: win7x6430: analysis #7269373 still processing
2025-12-27 13:22:13,675 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'curtain/1766834533.64.curtain.log'
2025-12-27 13:22:13,679 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 36
2025-12-27 13:22:16,092 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'sysmon/1766834534.76.sysmon.xml'
2025-12-27 13:22:16,571 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 15183616
2025-12-27 13:22:16,638 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/06dbc187234f7e5f_italian kicking trambling full movie glans 50+  (jade).mpg.exe'
2025-12-27 13:22:16,659 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 709667
2025-12-27 13:22:16,668 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/ea31a926448fc481_american handjob blowjob several models  (sarah).mpg.exe'
2025-12-27 13:22:16,705 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 986207
2025-12-27 13:22:16,716 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/d43ed23fbca60eab_gay hot (!) cock blondie .mpg.exe'
2025-12-27 13:22:16,742 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 790309
2025-12-27 13:22:16,747 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/237d55e0612dbe14_swedish fetish hardcore [milf] feet .mpg.exe'
2025-12-27 13:22:16,763 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 224328
2025-12-27 13:22:16,771 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/d0e04dd924910563_gay lesbian beautyfull .avi.exe'
2025-12-27 13:22:16,841 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1702910
2025-12-27 13:22:16,887 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/10703808a1611a75_indian nude beast full movie leather  (jenna,liz).mpeg.exe'
2025-12-27 13:22:16,920 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 851179
2025-12-27 13:22:16,940 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/85e429103b9b3f6c_italian action bukkake uncut glans .zip.exe'
2025-12-27 13:22:16,989 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1381246
2025-12-27 13:22:17,006 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/154bcb52c6f1fbba_russian horse beast several models  (samantha).mpg.exe'
2025-12-27 13:22:17,045 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 886663
2025-12-27 13:22:17,055 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/7194413eb4484998_trambling catfight girly .avi.exe'
2025-12-27 13:22:17,103 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1369962
2025-12-27 13:22:17,148 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/dd5f9be36547c9fd_tyrkish animal lesbian [bangbus] titts castration  (karin).zip.exe'
2025-12-27 13:22:17,282 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1079031
2025-12-27 13:22:17,368 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/4dd82df52ef40850_japanese handjob trambling public .avi.exe'
2025-12-27 13:22:17,417 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1458813
2025-12-27 13:22:17,463 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/cd42f368a3cf6adf_indian horse sperm hidden castration  (sandy,sylvia).zip.exe'
2025-12-27 13:22:17,505 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1181393
2025-12-27 13:22:17,545 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/345249600c3e6d2b_danish fetish hardcore hot (!) shoes .mpg.exe'
2025-12-27 13:22:17,582 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1370768
2025-12-27 13:22:17,615 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/75df04c807c47fa0_black nude trambling public swallow .mpeg.exe'
2025-12-27 13:22:17,664 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1812010
2025-12-27 13:22:17,679 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/fb86e902e9fc8b84_xxx catfight bondage .avi.exe'
2025-12-27 13:22:17,729 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1668514
2025-12-27 13:22:17,739 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/3eb5871ef0564599_tyrkish fetish trambling hot (!) femdom  (anniston,janette).zip.exe'
2025-12-27 13:22:17,780 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1624907
2025-12-27 13:22:17,797 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/0d5871c5c613afb7_hardcore sleeping  (sylvia).mpeg.exe'
2025-12-27 13:22:17,830 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 892831
2025-12-27 13:22:17,835 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/d78b48714b0271c4_danish beastiality blowjob hot (!)  (tatjana).mpg.exe'
2025-12-27 13:22:17,848 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/e473c58a1cf22b00_indian horse horse [free] cock .mpg.exe'
2025-12-27 13:22:17,857 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 225226
2025-12-27 13:22:17,885 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 669347
2025-12-27 13:22:17,942 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/01020e0b54cbfcef_mssrv.exe'
2025-12-27 13:22:17,980 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1309428
2025-12-27 13:22:18,167 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/7d8867a3d22775ca_xxx hidden blondie .avi.exe'
2025-12-27 13:22:18,407 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1778744
2025-12-27 13:22:18,431 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/1b057639902bddf2_lingerie hot (!) .zip.exe'
2025-12-27 13:22:18,453 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 2081811
2025-12-27 13:22:18,467 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/6b1677f3b4659422_fucking big hole .avi.exe'
2025-12-27 13:22:18,479 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1325606
2025-12-27 13:22:18,494 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/9ec2446c3b5927b5_russian horse beast [free] sm  (sandy,melissa).mpeg.exe'
2025-12-27 13:22:18,510 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1493731
2025-12-27 13:22:18,524 [cuckoo.core.resultserver] DEBUG: Task #7269373: File upload for 'files/0fcb642eb2e4823a_indian action beast lesbian  (liz).mpg.exe'
2025-12-27 13:22:18,539 [cuckoo.core.resultserver] DEBUG: Task #7269373 uploaded file length: 1368689
2025-12-27 13:22:18,573 [cuckoo.core.resultserver] DEBUG: Task #7269373 had connection reset for <Context for LOG>
2025-12-27 13:22:19,381 [cuckoo.core.guest] INFO: win7x6430: analysis completed successfully
2025-12-27 13:22:19,681 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Redsocks
2025-12-27 13:22:19,798 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer
2025-12-27 13:22:21,235 [cuckoo.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label win7x6430 to path /srv/cuckoo/cwd/storage/analyses/7269373/memory.dmp
2025-12-27 13:22:21,236 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm win7x6430
2025-12-27 13:24:18,926 [cuckoo.core.resultserver] DEBUG: Stopped tracking machine 192.168.168.230 for task #7269373
2025-12-27 13:24:19,333 [cuckoo.core.scheduler] DEBUG: Released database task #7269373
2025-12-27 13:24:19,351 [cuckoo.core.scheduler] INFO: Task #7269373: analysis procedure completed

Signatures

Yara rules detected for file (4 events)

description	(no description)	rule	DebuggerException__SetConsoleCtrl
description	Create or check mutex	rule	win_mutex
description	Affect system registries	rule	win_registry
description	Affect private profile	rule	win_files_operation

The executable uses a known packer (1 event)

packer

Pelles C 3.00, 4.00, 4.50 EXE (X86 CRT-LIB)

Creates executable files on the filesystem (41 events)

file	C:\Program Files\Common Files\Microsoft Shared\danish fetish hardcore hot (!) shoes .mpg.exe
file	C:\Users\Default\AppData\Local\Temp\xxx catfight bondage .avi.exe
file	C:\Program Files\Microsoft Office\Templates\russian horse beast [free] sm (Sandy,Melissa).mpeg.exe
file	C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\IEDownloadHistory\hardcore sleeping (Sylvia).mpeg.exe
file	C:\Program Files\Microsoft Office\Templates\1033\ONENOTE\14\Notebook Templates\indian action beast lesbian (Liz).mpg.exe
file	C:\Program Files\Windows Journal\Templates\american action bukkake hot (!) (Samantha).rar.exe
file	C:\Users\All Users\Microsoft\RAC\Temp\japanese porn fucking lesbian feet black hairunshaved .mpg.exe
file	C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor.Resources\japanese gang bang beast [milf] boots (Britney,Sylvia).zip.exe
file	C:\Program Files\DVD Maker\Shared\american beastiality lingerie lesbian blondie .mpeg.exe
file	C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\xxx hidden blondie .avi.exe
file	C:\tmpdyrg_l\lingerie hot (!) .zip.exe
file	C:\Windows\assembly\GAC_64\Microsoft.GroupPolicy.AdmTmplEditor\lingerie licking hole (Sonja,Janette).mpg.exe
file	C:\Users\Administrator\Downloads\black nude trambling public swallow .mpeg.exe
file	C:\ProgramData\Microsoft\Search\Data\Temp\blowjob [milf] (Samantha).avi.exe
file	C:\Program Files (x86)\Common Files\microsoft shared\swedish fetish hardcore [milf] feet .mpg.exe
file	C:\Users\All Users\Microsoft\Network\Downloader\fucking big hole .avi.exe
file	C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\indian nude beast full movie leather (Jenna,Liz).mpeg.exe
file	C:\Users\Default\Templates\swedish porn fucking [milf] .rar.exe
file	C:\Users\Default\Downloads\hardcore hot (!) shoes .mpeg.exe
file	C:\Users\Administrator\Templates\indian horse sperm hidden castration (Sandy,Sylvia).zip.exe
file	C:\Program Files\Windows Sidebar\Shared Gadgets\trambling catfight girly .avi.exe
file	C:\ProgramData\Microsoft\RAC\Temp\tyrkish animal lesbian [bangbus] titts castration (Karin).zip.exe
file	C:\Users\Administrator\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\blowjob voyeur fishy .rar.exe
file	C:\Windows\mssrv.exe
file	C:\Users\Administrator\AppData\Local\Temp\japanese handjob trambling public .avi.exe
file	C:\Users\Administrator\AppData\Local\Temp\mozilla-temp-files\sperm uncut feet redhair .mpeg.exe
file	C:\Users\Public\Downloads\russian horse beast several models (Samantha).mpg.exe
file	C:\Program Files (x86)\Adobe\Reader 9.0\Reader\IDTemplates\tyrkish fetish trambling hot (!) femdom (Anniston,Janette).zip.exe
file	C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor.Resources\gay lesbian beautyfull .avi.exe
file	C:\Users\Administrator\AppData\Local\Temporary Internet Files\danish action horse girls upskirt .rar.exe
file	C:\ProgramData\Microsoft\Windows\Templates\italian action bukkake uncut glans .zip.exe
file	C:\Users\Default\AppData\Local\Temporary Internet Files\american handjob blowjob several models (Sarah).mpg.exe
file	C:\ProgramData\Templates\italian kicking trambling full movie glans 50+ (Jade).mpg.exe
file	C:\Users\All Users\Templates\gay hot (!) cock blondie .mpg.exe
file	C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Templates\indian horse horse [free] cock .mpg.exe
file	C:\Users\All Users\Microsoft\Search\Data\Temp\hardcore lesbian .zip.exe
file	C:\Users\All Users\Microsoft\Windows\Templates\russian porn lingerie hidden ejaculation .zip.exe
file	C:\Program Files (x86)\Windows Sidebar\Shared Gadgets\danish beastiality blowjob hot (!) (Tatjana).mpg.exe
file	C:\Windows\assembly\GAC_32\Microsoft.GroupPolicy.AdmTmplEditor\danish action sperm voyeur .mpg.exe
file	C:\ProgramData\Microsoft\Network\Downloader\american beastiality gay masturbation sweet .mpeg.exe
file	C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates\black nude blowjob voyeur .mpg.exe

Drops an executable to the user AppData folder (1 event)

file	C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\american handjob blowjob several models (Sarah).mpg.exe

Searches running processes potentially to identify processes for sandbox evasion, code injection or memory dumping (3 events)

Time & API	Arguments	Status	Return
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000140 process_name: pythonw.exe process_identifier: 2944	1	1
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000140 process_name: SearchProtocolHost.exe process_identifier: 3052	1	1
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364	1	1

Repeatedly searches for a not-found process, you may want to run a web browser during analysis (50 out of 199 events)

Time & API	Arguments	Status	Return	Repeated
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000140 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 2792		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x000002a4 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 2584		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:19 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000248 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x00000250 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:20 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x000002cc process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0
Process32NextW Dec. 27, 2025, 10:21 a.m.	snapshot_handle: 0x00000264 process_name: 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe process_identifier: 1364		0	0

A process attempted to delay the analysis task. (1 event)

description

06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe tried to sleep 1355 seconds, actually delayed analysis time by 1355 seconds

Enumerates services, possibly for anti-virtualization (1 event)

Time & API	Arguments	Status	Return	Repeated
EnumServicesStatusA Dec. 27, 2025, 10:19 a.m.	service_handle: 0x005dcb30 service_type: 48 service_status: 1		0	0

Installs itself for autorun at Windows startup (1 event)

reg_key

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\mssrv32

reg_value

C:\Windows\mssrv.exe(I^ÿ0K^ÿ´::P[ß]ÊlfwÀÜ]ß]Z°9[(I^Ä[èúØõqø;ª8ûxÿõqjw×]þÿÿÿª8fw¢4fw(I^Z[ I^0ü7.xv[(I^Ã@\ý´¶(I^Øþâ@

Creates known WinSxsBot/Sfone Worm files, registry keys and/or mutexes (1 event)

mutex

mutex666

File has been identified by 13 AntiVirus engine on IRMA as malicious (13 events)

G Data Antivirus (Windows)	Virus: Gen:Variant.Application.Fragtor.4684 (Engine A), Win32.Worm.Sfone.B (Engine B)
Avast Core Security (Linux)	Win32:Agent-URR [Trj]
C4S ClamAV (Linux)	Win.Malware.Eclz-9953021-0
Trend Micro SProtect (Linux)	WORM_AGENT.JM
Trellix (Linux)	W32/Generic.worm.f virus
WithSecure (Linux)	Trojan.TR/Spy.Gen
eScan Antivirus (Linux)	Gen:Variant.Application.Fragtor.4684(DB)
ESET Security (Windows)	Win32/Agent.CP worm
Sophos Anti-Virus (Linux)	W32/Sfone-A
DrWeb Antivirus (Linux)	Win32.HLLW.Siggen.1607
ClamAV (Linux)	Win.Malware.Eclz-9953021-0
Bitdefender Antivirus (Linux)	Gen:Variant.Application.Fragtor.4684
Kaspersky Standard (Windows)	Worm.Win32.Agent.cp

Screenshots

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action	VT	Location
No hosts contacted.

Browser recommendation

File 06e211ae2e71eb2a_blowjob [free] bedroom .avi.exe

Summary Download Resubmit sample

Score

Autosubmit

Feedback

Information on Execution

Analyzer Log

Cuckoo Log

Signatures

Feedback

Summary
Download Resubmit sample