popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

direction.png.exe

UPX PE32 PE File DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us July 28, 2021, 9:35 a.m. July 28, 2021, 9:35 a.m.
Size 252.4KB
Type MS-DOS executable, MZ for MS-DOS
MD5 499200f6a8e223c057c6e16701740721
SHA256 d7e64f8e65ce586ce2f0a857810b2a23f85140bf5e52e5a824f09787fb2bf45e
CRC32 77AE7B36
ssdeep 3072:SEF7LCAtgVteclWZuw72sQI6ja4IyXBiGqfWOSi7NTk+0UylJm2os4nd41RgVTo6:SEFXKVteapw7SIJ4G9dpNyjmJLsRGPhz
Yara
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .unsooth
section .prekind
section .aqueoig
section .spiritr
section .nectaro
section .philolo
section .pres
section .outglad
section .pogonir
section .taurico
section .untar
section .muskroo
section .cricoto
section .breaghe
section .shunnab
section .hemaut
section .uncongr
section .tonner
section .jink
section .stirles
section .imper
section .unsubve
Bkav W32.AIDetect.malware1
Lionic Hacktool.Win32.Krap.kZAA
Elastic malicious (high confidence)
McAfee Artemis!499200F6A8E2
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_60% (D)
K7GW Trojan ( 700001211 )
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Kryptik.HLVR
APEX Malicious
Paloalto generic.ml
NANO-Antivirus Virus.Win32.Gen-Crypt.ccnc
Avast Win32:Malware-gen
McAfee-GW-Edition BehavesLike.Win32.Trojan.dh
FireEye Generic.mg.499200f6a8e223c0
Sophos ML/PE-A
SentinelOne Static AI - Malicious PE
Webroot W32.Trojan.Gen
VBA32 Malware-Cryptor.Win32.Vals.26
Cylance Unsafe
Ikarus Trojan-Spy.Agent
AVG Win32:Malware-gen