popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-04-02 00:24:01

PE Imphash

409c7c1ba51d89659506cf4700331508

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000210b 0x00002200 5.65035833742
.rdata 0x00004000 0x00000228 0x00000400 2.45664078522
.data 0x00005000 0x0000e438 0x0000e600 5.26145387618
.reloc 0x00014000 0x0000007c 0x00000200 1.90291427935

Imports

Library KERNEL32.dll:
0x10004000 lstrlenA
0x10004004 Sleep
Library USER32.dll:
0x1000400c GetWindowDC
0x10004010 GetSysColor
0x10004014 SystemParametersInfoA
0x10004018 GetForegroundWindow

Exports

Ordinal Address Name
1 0x100017b3 DF
!This program cannot be run in DOS mode.
RichUF"
`.rdata
@.data
.reloc
.text$mn
.idata$5
.rdata
.edata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
lstrlenA
KERNEL32.dll
GetForegroundWindow
GetWindowDC
GetSysColor
SystemParametersInfoA
USER32.dll
1"1@1F1^1
8/8D8u8
V,q!sBE%D
_4 !,#$%
N2tfu#
W !@#v
+TO[O {
Wlcf"Q&
87( i"
%$R6n*
)_HHjg('K
*XMK`eW$%
R-8F%!u#
Antivirus Signature
Bkav Clean
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.46015592
FireEye Generic.mg.5512180f20e8279a
CAT-QuickHeal Clean
ALYac Trojan.GenericKD.46015592
Cylance Clean
VIPRE Trojan.Win32.Generic!BT
AegisLab Trojan.Win32.Crypt.4!c
Sangfor Trojan.Win32.Wacatac.B
K7AntiVirus Clean
BitDefender Trojan.GenericKD.46015592
K7GW Trojan ( 0057a28d1 )
CrowdStrike win/malicious_confidence_100% (W)
Arcabit Clean
BitDefenderTheta Gen:NN.ZedlaF.34670.eq4@aqnXp8d
Cyren Clean
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Generik.IFNXACC
Baidu Clean
APEX Malicious
Avast Win32:Trojan-gen
ClamAV Clean
Kaspersky Trojan.Win32.Crypt.akup
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Tencent Clean
Ad-Aware Trojan.GenericKD.46015592
TACHYON Clean
Emsisoft Trojan.GenericKD.46015592 (B)
Comodo Malware@#3aghijb709ur4
F-Secure Clean
DrWeb Trojan.DownLoader38.22243
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition RDN/GenericM
CMC Clean
Sophos Mal/Generic-S
Ikarus Trojan.SuspectCRC
Jiangmin Clean
MaxSecure Clean
Avira TR/Crypt.ncsiy
Antiy-AVL Clean
Kingsoft Win32.Troj.Undef.(kcloud)
Gridinsoft Clean
Microsoft Trojan:Win32/Wacatac.B!ml
SUPERAntiSpyware Clean
ZoneAlarm Clean
GData Trojan.GenericKD.46015592
Cynet Malicious (score: 100)
AhnLab-V3 Trojan/Win.Generic.C4403057
Acronis Clean
McAfee RDN/GenericM
MAX malware (ai score=82)
VBA32 Clean
Malwarebytes Clean
Panda Trj/GdSda.A
Zoner Clean
TrendMicro-HouseCall Clean
Rising Malware.Undefined!8.C (CLOUD)
Yandex Clean
SentinelOne Clean
eGambit Clean
Fortinet W32/Generik.IFNXACC!tr
Webroot Clean
AVG Win32:Trojan-gen
Paloalto generic.ml
Qihoo-360 Win32/Trojan.Crypt.HygBWCcA
No IRMA results available.