popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

r104.exe

  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 2, 2021, 10:20 a.m. April 2, 2021, 10:20 a.m.
Size 367.5KB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 d2749c21fa8671e75cd147380ff110e0
SHA256 3dbab512123a36954684474e9a9f5502aa9edf0228a4df8f0cb33e328890d33b
CRC32 54565859
ssdeep 6144:BABatTx4LuLbY0xtTZrLRcBDrh15kk5XvI9eNtlhzQKOR64sWkxfkEW5sX2Lg:qc4utt95cBX8ejWT9kvW5s
Yara
  • PE_Header_Zero - PE File Signature Zero
  • OS_Processor_Check_Zero - OS Processor Check Signature Zero
  • win_files_operation - Affect private profile
  • IsPE64 - (no description)
  • IsConsole - (no description)
  • HasDebugData - DebugData Check
  • HasRichSignature - Rich Signature Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

APEX Malicious
Paloalto generic.ml
Kaspersky UDS:DangerousObject.Multi.Generic
Avast FileRepMetagen [Malware]
Kingsoft Win32.Hack.Undef.(kcloud)
AVG FileRepMetagen [Malware]