popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-04-02 00:24:01

PE Imphash

409c7c1ba51d89659506cf4700331508

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000210b 0x00002200 5.65035833742
.rdata 0x00004000 0x00000228 0x00000400 2.45664078522
.data 0x00005000 0x0000e438 0x0000e600 5.26145387618
.reloc 0x00014000 0x0000007c 0x00000200 1.90291427935

Imports

Library KERNEL32.dll:
0x10004000 lstrlenA
0x10004004 Sleep
Library USER32.dll:
0x1000400c GetWindowDC
0x10004010 GetSysColor
0x10004014 SystemParametersInfoA
0x10004018 GetForegroundWindow

Exports

Ordinal Address Name
1 0x100017b3 DF
!This program cannot be run in DOS mode.
RichUF"
`.rdata
@.data
.reloc
.text$mn
.idata$5
.rdata
.edata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
lstrlenA
KERNEL32.dll
GetForegroundWindow
GetWindowDC
GetSysColor
SystemParametersInfoA
USER32.dll
1"1@1F1^1
8/8D8u8
V,q!sBE%D
_4 !,#$%
N2tfu#
W !@#v
+TO[O {
Wlcf"Q&
87( i"
%$R6n*
)_HHjg('K
*XMK`eW$%
R-8F%!u#
Antivirus Signature
Bkav Clean
Elastic malicious (high confidence)
MicroWorld-eScan Clean
CMC Clean
CAT-QuickHeal Clean
McAfee Artemis!5512180F20E8
Malwarebytes Clean
VIPRE Clean
AegisLab Clean
Sangfor Clean
K7AntiVirus Clean
BitDefender Clean
K7GW Clean
CrowdStrike win/malicious_confidence_80% (D)
Baidu Clean
Cyren Clean
Symantec Clean
ESET-NOD32 Clean
APEX Malicious
Paloalto Clean
ClamAV Clean
Kaspersky Clean
Alibaba Clean
NANO-Antivirus Clean
SUPERAntiSpyware Clean
Rising Clean
Ad-Aware Clean
Sophos Clean
Comodo Clean
F-Secure Clean
DrWeb Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition Artemis!Trojan
FireEye Generic.mg.5512180f20e8279a
Emsisoft Clean
SentinelOne Clean
Jiangmin Clean
Webroot Clean
Avira Clean
MAX Clean
Antiy-AVL Clean
Kingsoft Clean
Microsoft Trojan:Win32/Wacatac.B!ml
Gridinsoft Clean
Arcabit Clean
ViRobot Clean
ZoneAlarm Clean
GData Clean
Cynet Malicious (score: 100)
AhnLab-V3 Clean
Acronis Clean
ALYac Clean
TACHYON Clean
VBA32 Clean
Cylance Unsafe
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Clean
Yandex Clean
Ikarus Clean
eGambit Clean
Fortinet Clean
BitDefenderTheta Gen:NN.ZedlaF.34662.eq4@aqnXp8d
Qihoo-360 Clean
Avast Clean
MaxSecure Clean
No IRMA results available.