popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2018-06-06 02:03:45

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00007ebf 0x00008000 7.70246900868

!This program cannot be run in DOS mode.
<R>VfVV
#45:7%%809V
VVWVVV
>VVV^<
#45:7%%809V
>VVV^<
VVVV#R"TYE
NVVSopVV>NTVV
VfVV"Zs
PPPPQPPV
VVVV#P"R
)FVvVVY
BVVVsV
V&V3V5VsVVV
tVVVyV5VvV%V"V7V$V"VvVtVtVvVtVsV%VtVVV
ZVVV$V#V8V7V%VVV
_VVV%4?32::VV
#$$38"
98"$9:
3$ ?53%
VVV'3;#VVVVVV ?$"#7:VVV ;!7$3VVVV.38VVVVVVVV
VVVV#S"U/<x
VVV=V3V$V8V3V:VeVdVVV#V%V3V$VeVdVVVVVVV7V2V V7V&V?VeVdVVV%V>V3V:V:VeVdVVVVVV
+G}A B
@SVWATH
UxSubclassInfo
[j`XeH
CreateThread
CloseHandle
SetPropA
0A\_^[
$hFa.Zc
MmU*Wj]IUh
KOhZLRWU
v7TIRh
b.T Wc
U{4*f2O
Uxr|bI
G3XKVs
YaV|`D
\NpU[.s_
I<h_3C
;UGKH;
DG,heG
Ww &%k
W)9G[\T
PEvlbA lT
LEEK`U
hrtsXU
LNn5LYiPH
wDFtemv(AI
ThFNX7u
wlW3"Le
)h Xl['
TmW)RO
DhU|T*
~T|S@V
&TEF>^A
@T$"X\
jEY\?aG
LuLVhU
j^fJhR
NPnyLNk
Jz){Lsj
gVmql<@
qIW$|C5
=Zq<Z@
PW~^|F
yp8\(w
jJlhy5
V\EBVmV
,h+;<`
3"L}3Czm
!LG.UO
<Ujf3VC
!V/n2(
>hs<<if
iQ3Cl;
i^j~vwt
he1fmd
VwU3IhZ
iQ=UmW
W.T Wc
nU1UmU(
Um/F_I
}rU7dP
\-QbUWIT
\t!]L=
Vh=wVh
UaZ{vd
"yUG,dV
tCDJnU/
^UlA.pXE
zh!Vto
nC\Ph^
TlVH]3C"W
rHU$^IU
iA\V|U
Vs<,V)
$4$*uW)1$
`K9A})
=eSx <
e#VPur1
HP.(yw?
6QDV5%
Vt{3CKU
^ UE&x
+TEV+EG
q}'^ 6
]3Z}+,S
Z5]>p5^
&H-e&H
9hEF[XU
@wBhUOn
CwzelP%2
!DF0Y$
Y9N$Vq |
3yftZ<{
4ZUA.i
Z*]DB|U
5iEV5e
xh[<^d%
m%oEiv
]hH,zu
thI,WHU
UfMhUH
XU`'l%
hQ\mhUPfhQ
hUIfh9
U4&hK<J
%08X%08X
Antivirus Signature
Bkav W32.AIDetect.malware1
Elastic malicious (high confidence)
MicroWorld-eScan Gen:Variant.Ser.Razy.7042
FireEye Generic.mg.0d1334075336455a
CAT-QuickHeal Clean
McAfee GenericRXGK-YC!0D1334075336
Cylance Unsafe
Sangfor Trojan.Win32.Save.a
K7AntiVirus Clean
BitDefender Gen:Variant.Ser.Razy.7042
K7GW Clean
Cybereason malicious.753364
BitDefenderTheta AI:Packer.EB5DFF611E
Cyren W32/Dofoil.H.gen!Eldorado
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Smokeloader.J
Baidu Clean
APEX Malicious
Paloalto Clean
ClamAV Win.Malware.Razy-7588162-0
Kaspersky HEUR:Trojan.Win32.Generic
Alibaba Clean
NANO-Antivirus Trojan.Win32.Zurgop.fednlb
ViRobot Clean
Rising Downloader.Zurgop!8.4BB (CLOUD)
Ad-Aware Gen:Variant.Ser.Razy.7042
Sophos ML/PE-A + Mal/Behav-204
Comodo Clean
F-Secure Clean
DrWeb Trojan.PWS.Spy.21017
VIPRE Trojan.Win32.Winwebsec.m (v)
TrendMicro Trojan.Win32.ZURGOP.SM
McAfee-GW-Edition BehavesLike.Win32.VirRansom.nc
CMC Clean
Emsisoft Trojan-Downloader.Zurgop (A)
Ikarus Trojan-Downloader.Win32.Dofoil
GData Gen:Variant.Ser.Razy.7042
Jiangmin Trojan.Generic.concg
Webroot W32.Trojan.Smoakloader
Avira TR/Crypt.XPACK.Gen
MAX malware (ai score=85)
Antiy-AVL Trojan[Downloader]/Win32.Dofoil
Kingsoft Clean
Gridinsoft Clean
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan.Win32.Generic
Microsoft TrojanDownloader:Win32/Dofoil.AD
Cynet Malicious (score: 100)
AhnLab-V3 Trojan/Win32.Dofoil.R223509
Acronis suspicious
VBA32 TScope.Malware-Cryptor.SB
ALYac Gen:Variant.Ser.Razy.7042
TACHYON Trojan-Downloader/W32.SmokeLoader.33280
Malwarebytes Trojan.Agent
Panda Clean
Zoner Clean
TrendMicro-HouseCall Trojan.Win32.ZURGOP.SM
Tencent Clean
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Clean
Fortinet W32/Zurgop.DA!tr
AVG Win32:Malware-gen
Avast Win32:Malware-gen
CrowdStrike win/malicious_confidence_100% (W)
Qihoo-360 HEUR/QVM19.1.8D97.Malware.Gen
No IRMA results available.