popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-04-20 18:20:00

PE Imphash

fe54aa4914f46efb2484d8839e21efc3

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00006492 0x00006600 5.65929881831
.rdata 0x00008000 0x0000026e 0x00000400 2.69110010098
.data 0x00009000 0x0006a448 0x0006a600 5.45482901777
.reloc 0x00074000 0x000000b8 0x00000200 2.41820200948

Imports

Library SHLWAPI.dll:
0x10008010 wnsprintfA
Library KERNEL32.dll:
0x10008000 CloseHandle
0x10008004 CreateFileA
0x10008008 WriteFile
Library USER32.dll:
0x10008018 GetClientRect
0x1000801c GetClassNameA
0x10008020 GetWindowTextA

Exports

Ordinal Address Name
1 0x1000252b StartW
!This program cannot be run in DOS mode.
Richu1
`.rdata
@.data
.reloc
StartW
.text$mn
.idata$5
.rdata
.edata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
wnsprintfA
SHLWAPI.dll
CreateFileA
WriteFile
CloseHandle
KERNEL32.dll
GetWindowTextA
GetClientRect
GetClassNameA
USER32.dll
2 2-2U2
O-+zug
4vHt6|
YDSSx)
(Psa
q[G74Xu
0=*`Qb
Antivirus Signature
Bkav W32.AIDetect.malware2
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.36747608
CMC Clean
CAT-QuickHeal Clean
ALYac Trojan.GenericKD.36747608
Cylance Clean
VIPRE Clean
AegisLab Clean
Sangfor Riskware.Win32.Wacapew.C
CrowdStrike win/malicious_confidence_100% (W)
BitDefender Trojan.GenericKD.36747608
K7GW Clean
K7AntiVirus Clean
BitDefenderTheta Clean
Cyren Clean
Symantec Clean
ESET-NOD32 Clean
Baidu Clean
APEX Malicious
Paloalto generic.ml
ClamAV Clean
Kaspersky Clean
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Tencent Clean
Ad-Aware Trojan.GenericKD.36747608
Emsisoft Trojan.GenericKD.36747608 (B)
Comodo Clean
F-Secure Clean
DrWeb Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition Artemis
FireEye Generic.mg.19cf698a9ec21bb5
Sophos Clean
SentinelOne Clean
Jiangmin Clean
Webroot Clean
Avira Clean
MAX malware (ai score=86)
Antiy-AVL Clean
Kingsoft Clean
Microsoft Program:Win32/Wacapew.C!ml
Gridinsoft Clean
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm Clean
GData Trojan.GenericKD.36747608
Cynet Malicious (score: 100)
AhnLab-V3 Clean
Acronis Clean
McAfee Artemis!19CF698A9EC2
TACHYON Clean
VBA32 Clean
Malwarebytes Clean
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Rising Malware.Strealer!8.1EF (CLOUD)
Yandex Clean
Ikarus Clean
eGambit Clean
Fortinet PossibleThreat.PALLAS.H
MaxSecure Clean
AVG Win32:Malware-gen
Avast Win32:Malware-gen
Qihoo-360 Clean
No IRMA results available.