popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

img270.jpg

UPX PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Aug. 5, 2021, 5:39 p.m. Aug. 5, 2021, 5:42 p.m.
Size 2.6MB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 68222440e7fab33d7b5ec1b6e2672962
SHA256 9f853c69ec51eef3b38c508c2cdfaad6230c9cac218b6c1e2c1aade3e2aaa684
CRC32 EAA2C166
ssdeep 49152:wvibll7s0eIB4GzdH21N9vGHE5S9H5EsHBTzPfEAuj0/XN+fX+4T38mc:wS00SGzdHAuPmKJzXEAfXcuwU
Yara
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x0029b000', u'virtual_address': u'0x00001000', u'entropy': 7.988865324743213, u'name': u'.text', u'virtual_size': u'0x0029a1d0'} entropy 7.98886532474 description A section with a high entropy has been found
entropy 0.997010463378 description Overall entropy of this PE file is high
Lionic Trojan.Win32.Mucc.4!c
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.46739369
Cylance Unsafe
K7AntiVirus Trojan ( 0057ffa61 )
Alibaba Trojan:Win32/Injector.37c66f91
K7GW Trojan ( 0057ffa61 )
Cybereason malicious.0fc27c
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Injector.EPVL
APEX Malicious
Paloalto generic.ml
ClamAV Win.Malware.Generic-9881402-0
Kaspersky Trojan.Win32.Mucc.pry
BitDefender Trojan.GenericKD.46739369
Avast Win32:InjectorX-gen [Trj]
Tencent Win32.Trojan.Mucc.Wnmg
Ad-Aware Trojan.GenericKD.46739369
Sophos Mal/Generic-S
McAfee-GW-Edition Artemis!Trojan
FireEye Generic.mg.68222440e7fab33d
Emsisoft Trojan.GenericKD.46739369 (B)
Ikarus Win32.Outbreak
GData Trojan.GenericKD.46739369
Microsoft Trojan:Script/Phonzy.C!ml
Cynet Malicious (score: 100)
McAfee Artemis!68222440E7FA
MAX malware (ai score=86)
Malwarebytes Trojan.Injector
TrendMicro-HouseCall TROJ_GEN.R002H0CH421
Rising Trojan.Injector!1.C6AF (CLASSIC)
Fortinet W32/Mucc.PRY!tr
AVG Win32:InjectorX-gen [Trj]
CrowdStrike win/malicious_confidence_90% (W)
Qihoo-360 Win32/Trojan.Mucc.HxQBC38A