This repository has been archived by the owner on Apr 26, 2021. It is now read-only.
Analyzing Malware Embedded in pdf files #3176
Comments
pavit939
changed the title
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Thanks for creating an issue! But first: did you read our community guidelines?
https://cuckoo.sh/docs/introduction/community.html
My issue is:
I am completely new to Cuckoo. I have successfully set up cuckoo and got it running successfully. When I am trying to check an exe file, I am able to retrieve the report stating that it is a malware successfully. When I try to embed an exe file in a pdf document using Pypdf(python) and send it to cuckoo sandbox for analysis, I was getting the report as benign file. But when I went back and checked the analysis log, it was shown as "Analysis timeout hit, terminating analysis". So I increased default analysis timeout from 160 seconds to 800 seconds. Still facing the same issue. I feel that because of this my existing malware file is being predicted as benign. Kindly help me with this issue.
My Cuckoo version and operating system are:
Cuckoo Sandbox v2.0.7 and OS is Ubuntu 18.04
The log, error, files etc can be found at:
Analysis Log :
2021-02-08 16:43:41,000 [analyzer] DEBUG: Starting analyzer from: C:\tmpp7am2b
2021-02-08 16:43:41,000 [analyzer] DEBUG: Pipe server name: ??\PIPE\muHhqMvsNEhNuOmmZHpqOCRGVdI
2021-02-08 16:43:41,000 [analyzer] DEBUG: Log pipe server name: ??\PIPE\vdLbISfxtVBcwMOcDkxLYlMB
2021-02-08 16:43:41,155 [analyzer] DEBUG: Started auxiliary module DbgView
2021-02-08 16:43:41,640 [analyzer] DEBUG: Started auxiliary module Disguise
2021-02-08 16:43:41,812 [analyzer] DEBUG: Loaded monitor into process with pid 500
2021-02-08 16:43:41,812 [analyzer] DEBUG: Started auxiliary module DumpTLSMasterSecrets
2021-02-08 16:43:41,812 [analyzer] DEBUG: Started auxiliary module Human
2021-02-08 16:43:41,812 [analyzer] DEBUG: Started auxiliary module InstallCertificate
2021-02-08 16:43:41,812 [analyzer] DEBUG: Started auxiliary module Reboot
2021-02-08 16:43:41,858 [analyzer] DEBUG: Started auxiliary module RecentFiles
2021-02-08 16:43:41,858 [analyzer] DEBUG: Started auxiliary module Screenshots
2021-02-08 16:43:41,858 [analyzer] DEBUG: Started auxiliary module LoadZer0m0n
2021-02-08 16:43:41,905 [lib.api.process] INFO: Successfully executed process from path 'C:\Program Files (x86)\Adobe\Reader 9.0\R$
2021-02-08 16:43:42,046 [analyzer] DEBUG: Loaded monitor into process with pid 2272
2021-02-08 16:43:43,000 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Roaming\Adobe\Ac$
2021-02-08 16:43:43,155 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Local\Adobe\Colo$
2021-02-08 16:43:43,171 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Local\Adobe\Colo$
2021-02-08 16:43:43,187 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Local\Adobe\Colo$
2021-02-08 16:43:45,890 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Roaming\Adobe\Ac$
2021-02-08 16:43:45,905 [analyzer] INFO: Added new file to list with pid 2272 and path C:\Users\Administrator\AppData\Roaming\Adobe\Ac$
2021-02-08 12:18:50,148 [analyzer] INFO: Analysis timeout hit, terminating analysis.
2021-02-08 12:18:51,055 [lib.api.process] INFO: Memory dump of process with pid 2272 completed
2021-02-08 12:18:51,055 [analyzer] WARNING: File at path u'c:\users\administrator\appdata\roaming\adobe\acrobat\9.0\shareddata$
2021-02-08 12:18:51,071 [analyzer] INFO: Analysis completed.
Cuckoo.log :
2021-02-08 16:43:42,683 [cuckoo.core.scheduler] INFO: Task #51: acquired machine 192.168.56.1011 (label=192.168.56.1011)
2021-02-08 16:43:42,685 [cuckoo.core.resultserver] DEBUG: Now tracking machine 192.168.56.101 for task #51
2021-02-08 16:43:42,688 [cuckoo.core.plugins] DEBUG: Started auxiliary module: Replay
2021-02-08 16:43:42,718 [cuckoo.auxiliary.sniffer] INFO: Started sniffer with PID 11425 (interface=vboxnet0, host=192.168.56.101)
2021-02-08 16:43:42,720 [cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer
2021-02-08 16:43:42,872 [cuckoo.machinery.virtualbox] DEBUG: Starting vm 192.168.56.1011
2021-02-08 16:43:43,293 [cuckoo.machinery.virtualbox] DEBUG: Restoring virtual machine 192.168.56.1011 to its current snapshot
2021-02-08 16:43:46,385 [cuckoo.core.guest] INFO: Starting analysis #51 on guest (id=192.168.56.1011, ip=192.168.56.101)
2021-02-08 16:43:47,389 [cuckoo.core.guest] DEBUG: 192.168.56.1011: not ready yet
2021-02-08 16:43:48,393 [cuckoo.core.guest] DEBUG: 192.168.56.1011: not ready yet
2021-02-08 16:43:49,339 [cuckoo.core.guest] INFO: Guest is running Cuckoo Agent 0.10 (id=192.168.56.1011, ip=192.168.56.101)
2021-02-08 16:43:49,385 [cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=192.168.56.1011, ip=192.168.56.101, monitor=latest, size=3884763)
2021-02-08 16:43:50,128 [cuckoo.core.resultserver] DEBUG: Task #51: live log analysis.log initialized.
2021-02-08 16:43:50,890 [cuckoo.core.resultserver] DEBUG: Task #51 is sending a BSON stream
2021-02-08 16:43:51,125 [cuckoo.core.resultserver] DEBUG: Task #51 is sending a BSON stream
2021-02-08 16:43:52,074 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0001.jpg'
2021-02-08 16:43:52,078 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 50204
2021-02-08 16:43:53,142 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0002.jpg'
2021-02-08 16:43:53,146 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 110893
2021-02-08 16:43:54,202 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0003.jpg'
2021-02-08 16:43:54,205 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112682
2021-02-08 16:43:54,992 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:00,050 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:05,125 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:07,755 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0004.jpg'
2021-02-08 16:44:07,758 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113236
2021-02-08 16:44:09,851 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0005.jpg'
2021-02-08 16:44:09,854 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:10,210 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:12,953 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0006.jpg'
2021-02-08 16:44:12,957 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113364
2021-02-08 16:44:14,018 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0007.jpg'
2021-02-08 16:44:14,022 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:15,290 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:20,370 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:24,333 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0008.jpg'
2021-02-08 16:44:24,337 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113446
2021-02-08 16:44:25,392 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0009.jpg'
2021-02-08 16:44:25,396 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:25,426 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:27,491 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0010.jpg'
2021-02-08 16:44:27,493 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113446
2021-02-08 16:44:28,549 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0011.jpg'
2021-02-08 16:44:28,552 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112788
2021-02-08 16:44:29,637 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0012.jpg'
2021-02-08 16:44:30,477 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:30,707 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0013.jpg'
2021-02-08 16:44:30,710 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:31,779 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0014.jpg'
2021-02-08 16:44:31,796 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113732
2021-02-08 16:44:32,879 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0015.jpg'
2021-02-08 16:44:32,883 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113446
2021-02-08 16:44:33,958 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0016.jpg'
2021-02-08 16:44:33,963 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:35,545 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:39,174 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0017.jpg'
2021-02-08 16:44:39,177 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113446
2021-02-08 16:44:40,254 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0018.jpg'
2021-02-08 16:44:40,257 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112627
2021-02-08 16:44:40,621 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:45,705 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:50,782 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:44:55,852 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:00,914 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:05,998 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:11,070 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:16,155 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:21,234 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:26,302 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:31,392 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:36,451 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:41,333 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0019.jpg'
2021-02-08 16:45:41,337 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113370
2021-02-08 16:45:41,508 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:42,380 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0020.jpg'
2021-02-08 16:45:42,384 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112710
2021-02-08 16:45:45,478 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0021.jpg'
2021-02-08 16:45:45,483 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113452
2021-02-08 16:45:46,522 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0022.jpg'
2021-02-08 16:45:46,528 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112633
2021-02-08 16:45:46,535 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:49,606 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0023.jpg'
2021-02-08 16:45:49,624 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 115560
2021-02-08 16:45:50,698 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0024.jpg'
2021-02-08 16:45:50,704 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113452
2021-02-08 16:45:51,571 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:45:52,769 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0025.jpg'
2021-02-08 16:45:52,773 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112633
2021-02-08 16:45:53,816 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0026.jpg'
2021-02-08 16:45:53,823 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113452
2021-02-08 16:45:59,097 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0029.jpg'
2021-02-08 16:45:59,100 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112633
2021-02-08 16:46:01,693 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:06,772 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:11,829 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:16,908 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:17,737 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0030.jpg'
2021-02-08 16:46:17,739 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113330
2021-02-08 16:46:19,822 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0031.jpg'
2021-02-08 16:46:19,827 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112633
2021-02-08 16:46:21,989 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:23,970 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0032.jpg'
2021-02-08 16:46:23,973 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113330
2021-02-08 16:46:25,038 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0033.jpg'
2021-02-08 16:46:25,041 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112633
2021-02-08 16:46:27,033 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:32,111 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:37,193 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:42,277 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:47,356 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:47,700 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0034.jpg'
2021-02-08 16:46:47,705 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113698
2021-02-08 16:46:48,756 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0035.jpg'
2021-02-08 16:46:48,760 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112904
2021-02-08 16:46:52,425 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:46:57,476 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:02,546 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:04,278 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0036.jpg'
2021-02-08 16:47:04,282 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113732
2021-02-08 16:47:05,332 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0037.jpg'
2021-02-08 16:47:05,335 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112902
2021-02-08 16:47:07,616 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:11,525 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0038.jpg'
2021-02-08 16:47:11,528 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113732
2021-02-08 16:47:12,690 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:13,600 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0039.jpg'
2021-02-08 16:47:13,603 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 112902
2021-02-08 16:47:17,725 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:21,871 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'shots/0040.jpg'
2021-02-08 16:47:21,874 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 113732
2021-02-08 16:47:22,801 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:47:58,185 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:03,244 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:08,325 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:13,404 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:18,451 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:23,518 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:28,604 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:33,684 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:38,769 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:43,853 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:48,908 [cuckoo.core.guest] DEBUG: 192.168.56.1011: analysis #51 still processing
2021-02-08 16:48:50,805 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'memory/2272-1.dmp'
2021-02-08 16:48:51,008 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 111353544
2021-02-08 16:48:51,020 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'files/9883a1371ae0f380_wscrgb.icc'
2021-02-08 16:48:51,023 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'files/b9a2361907197410_wsrgb.icc'
2021-02-08 16:48:51,023 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 66208
2021-02-08 16:48:51,023 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 2676
2021-02-08 16:48:51,025 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'files/270362f5acb27e66_acecache10.lst'
2021-02-08 16:48:51,026 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 1946
2021-02-08 16:48:51,028 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'files/f2485a7064ebfb9b_shareddataevents'
2021-02-08 16:48:51,029 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 3072
2021-02-08 16:48:51,031 [cuckoo.core.resultserver] DEBUG: Task #51: File upload for 'files/7ae0786c1ee224d3_usercache.bin'
2021-02-08 16:48:51,031 [cuckoo.core.resultserver] DEBUG: Task #51 uploaded file length: 39120
2021-02-08 16:48:51,942 [cuckoo.core.guest] INFO: 192.168.56.1011: analysis completed successfully
2021-02-08 16:48:51,964 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Replay
2021-02-08 16:48:52,023 [cuckoo.core.resultserver] DEBUG: Task #51 had connection reset for
2021-02-08 16:48:52,023 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer
2021-02-08 16:48:52,024 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm 192.168.56.1011
2021-02-08 16:48:53,271 [cuckoo.core.resultserver] DEBUG: Stopped tracking machine 192.168.56.101 for task #51
2021-02-08 16:48:53,315 [cuckoo.core.scheduler] DEBUG: Released database task #51
2021-02-08 16:48:53,339 [cuckoo.core.plugins] DEBUG: Executed processing module "AnalysisInfo" for task #51
2021-02-08 16:48:53,376 [cuckoo.core.plugins] DEBUG: Executed processing module "BehaviorAnalysis" for task #51
2021-02-08 16:48:53,391 [cuckoo.core.plugins] DEBUG: Executed processing module "Dropped" for task #51
2021-02-08 16:48:53,391 [cuckoo.core.plugins] DEBUG: Executed processing module "DroppedBuffer" for task #51
2021-02-08 16:48:54,368 [cuckoo.core.plugins] DEBUG: Executed processing module "MetaInfo" for task #51
2021-02-08 16:48:55,102 [cuckoo.core.plugins] DEBUG: Executed processing module "ProcessMemory" for task #51
2021-02-08 16:48:55,102 [cuckoo.core.plugins] DEBUG: Executed processing module "Procmon" for task #51
2021-02-08 16:48:56,468 [cuckoo.core.plugins] DEBUG: Executed processing module "Screenshots" for task #51
2021-02-08 16:48:56,840 [cuckoo.core.plugins] DEBUG: Executed processing module "Static" for task #51
2021-02-08 16:48:56,905 [cuckoo.core.plugins] DEBUG: Executed processing module "Strings" for task #51
2021-02-08 16:48:56,926 [cuckoo.core.plugins] DEBUG: Executed processing module "TargetInfo" for task #51
2021-02-08 16:48:56,958 [cuckoo.core.plugins] DEBUG: Executed processing module "NetworkAnalysis" for task #51
2021-02-08 16:48:56,958 [cuckoo.core.plugins] DEBUG: Executed processing module "Extracted" for task #51
2021-02-08 16:48:56,959 [cuckoo.core.plugins] DEBUG: Executed processing module "TLSMasterSecrets" for task #51
2021-02-08 16:48:56,960 [cuckoo.core.plugins] DEBUG: Executed processing module "Debug" for task #51
2021-02-08 16:48:56,976 [cuckoo.core.plugins] DEBUG: Running 542 signatures
2021-02-08 16:48:57,129 [cuckoo.core.plugins] DEBUG: Analysis matched signature: memdump_urls
2021-02-08 16:48:57,301 [cuckoo.core.plugins] DEBUG: Executed reporting module "JsonDump"
2021-02-08 16:48:57,579 [cuckoo.core.plugins] DEBUG: Executed reporting module "MongoDB"
2021-02-08 16:48:57,580 [cuckoo.core.scheduler] INFO: Task #51: reports generation completed
2021-02-08 16:48:57,584 [cuckoo.core.scheduler] INFO: Task #51: analysis procedure completed
Embedded pdf file with malware exe file:
baz_0.pdf
Malware exe file source :
https://bazaar.abuse.ch/browse/
The text was updated successfully, but these errors were encountered: