Static | ZeroBOX

PE Compile Time

2020-05-22 23:51:43

PDB Path

C:\rojaw\yatumaxu.pdb

PE Imphash

675f985c31bb43cb925f7664d8fe06b7

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0002c5f0 0x0002c600 7.87929837795
.rdata 0x0002e000 0x00004e9e 0x00005000 5.61125857773
.data 0x00033000 0x0288fa88 0x00004200 1.22502473948
.rsrc 0x028c3000 0x0000fe70 0x00010000 6.59963679638

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_ICON 0x028d2080 0x00000468 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA GLS_BINARY_LSB_FIRST
RT_DIALOG 0x028d2768 0x000000cc LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_STRING 0x028d2bc8 0x000002a8 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_STRING 0x028d2bc8 0x000002a8 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_ACCELERATOR 0x028d2588 0x00000028 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_ACCELERATOR 0x028d2588 0x00000028 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_GROUP_ICON 0x028d24e8 0x00000068 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_GROUP_ICON 0x028d24e8 0x00000068 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_GROUP_ICON 0x028d24e8 0x00000068 LANG_SERBIAN SUBLANG_ARABIC_ALGERIA data
RT_VERSION 0x028d25b0 0x000001b8 LANG_NEUTRAL SUBLANG_NEUTRAL COM executable for DOS

Imports

Library KERNEL32.dll:
0x42e008 EnumDateFormatsExW
0x42e00c MoveFileExA
0x42e010 EndUpdateResourceW
0x42e018 GetConsoleAliasA
0x42e02c WaitForSingleObject
0x42e034 GetComputerNameW
0x42e038 SetEvent
0x42e040 GetConsoleTitleA
0x42e044 ReadConsoleOutputA
0x42e04c CreateActCtxW
0x42e050 GetConsoleCP
0x42e054 LocalShrink
0x42e058 GetVersionExW
0x42e05c GetFileAttributesA
0x42e064 lstrcpynW
0x42e068 VerifyVersionInfoA
0x42e06c IsBadWritePtr
0x42e070 GetModuleFileNameW
0x42e078 GetSystemDirectoryA
0x42e07c lstrcatA
0x42e080 GetACP
0x42e084 GetVolumePathNameA
0x42e088 lstrlenW
0x42e08c SetConsoleTitleA
0x42e090 FlushFileBuffers
0x42e094 InterlockedExchange
0x42e098 GetLastError
0x42e09c GetProcAddress
0x42e0a4 LocalLock
0x42e0ac GetLocalTime
0x42e0b0 WriteConsoleA
0x42e0b4 GetProcessId
0x42e0b8 LocalAlloc
0x42e0bc SetCalendarInfoW
0x42e0c0 CreateTapePartition
0x42e0c8 GlobalGetAtomNameW
0x42e0d0 GetModuleHandleA
0x42e0d8 BuildCommDCBA
0x42e0dc VirtualProtect
0x42e0e0 PeekConsoleInputA
0x42e0e8 FindFirstVolumeW
0x42e0ec AreFileApisANSI
0x42e0f0 LCMapStringW
0x42e0f4 CreateFileW
0x42e104 GetModuleHandleW
0x42e108 Sleep
0x42e10c ExitProcess
0x42e110 GetStartupInfoW
0x42e114 WriteFile
0x42e118 GetStdHandle
0x42e11c GetModuleFileNameA
0x42e120 HeapAlloc
0x42e124 TlsGetValue
0x42e128 TlsAlloc
0x42e12c TlsSetValue
0x42e130 TlsFree
0x42e134 SetLastError
0x42e138 GetCurrentThreadId
0x42e144 TerminateProcess
0x42e148 GetCurrentProcess
0x42e14c IsDebuggerPresent
0x42e150 LoadLibraryA
0x42e15c GetCommandLineW
0x42e160 SetHandleCount
0x42e164 GetFileType
0x42e168 GetStartupInfoA
0x42e16c HeapCreate
0x42e170 VirtualFree
0x42e174 HeapFree
0x42e17c GetTickCount
0x42e180 GetCurrentProcessId
0x42e188 RaiseException
0x42e18c VirtualAlloc
0x42e190 HeapReAlloc
0x42e194 GetCPInfo
0x42e198 GetOEMCP
0x42e19c IsValidCodePage
0x42e1a0 RtlUnwind
0x42e1a4 HeapSize
0x42e1a8 GetLocaleInfoA
0x42e1ac WideCharToMultiByte
0x42e1b0 GetStringTypeA
0x42e1b4 MultiByteToWideChar
0x42e1b8 GetStringTypeW
0x42e1bc LCMapStringA
Library USER32.dll:
0x42e1c4 RealGetWindowClassA
Library ADVAPI32.dll:

Exports

Ordinal Address Name
1 0x401003 @GetAnotherVice@12
2 0x401000 @SetFirstEverVice@4
!This program cannot be run in DOS mode.
`.rdata
@.data
VVVVVV
VVVVVVh
"uoVVV
uBhl7@
j h(!C
tNIt?It0It
uL9=D{C
Y;=x6C
tehQ.@
>=Yt1j
QQSVWh
jTh8"C
j@j ^V
0SSSSS
0SSSSS
0SSSSS
to=x<C
0A@@Ju
URPQQh
_VVVVV
^WWWWW
tRHtCHt4Ht%HtFHHt
0WWWWW
AAFFf;
PPPPPPPP
PPPPPPPP
t"SS9]
;t$,v-
UQPXY]Y[
0SSSSS
_VVVVV
t+WWVPV
<+t(<-t$:
+t HHt
WS9%J_
BR{MHiDN
9}HMa;
F#Rv'R
h!07M"%zpz
BJuX4)
x{J&R2Z
3EqmU5:?
5frIH"
Pi#j+R|
\76=xnI
l9-;F;O
hiTKIr`
uS#0p?
6X?XSD
kw{ldj
b~GIRG]
eW(>f@
5SSrm
Saj}mu
o@%TbI
S\9ey#
(<]-N$\
a'\O-=
V-r108e
%.D3<Hm
o!|orNP
<TQfs,v
5fatGy
-^m2ui
t&Fj55/\
]La" 
;?[973
W$d4 m:
&KVw+z
#+IL+uWQ
R?BH^^S
4!LOY1E
N}}!p"psF
aqH%2
EAq1ebH?
^b;y.=]
!C9}l&
oxz`&w
MaA&B]
,j#;9`j
yU<d>K_
$hu(&)3
`\yf)+
5D!]P#
'amV)-
a%{7'7A
=*E-<,
:+ykS\s
G,HT[H
aAU0k'
w-5b7u
R^#co.
m._3*2
Dr-))/
RjTK2G
O:=^,&%
ULW^T"
|bTX&eO
)W!s}&
g,w3b
zlo&s
@88qCj
`{5P I
J%v$xx
LiM(pD$
X*;O_]
slSY<7nbT
N_b+J$
o~^o"&
o?PDq.
kg*yp&
uRK|(n
M@LG8_{f
u*#^,Cc
95mByi
-.GDL~
!blcFd
9\8zb?
8Kl11b
y/]=YP
SpA|/Fu=
@kPfT*7
Z$ozF`?
`&qr5Fl%7
}_iu~\<A
)0Q#d7
@\Ob&M
$($|dA
N%VWh5m5
>ouSJ3
:nf~+tN
?vo-_]
$9|Z?4
!+@'nE9
ng&19
j`_Cr
hj?Zg2[
DtvZa`
O:{<mw
1{3{/
4)zC`=
6N@XlI
lB_]+A^
`,< 9a
M.o\#_I
a^25!R
F@'F]
i4G(e
T.mtc
-#~9`h)
55_Op^\
:s^%?v5f
|8 IWoY
{_9}Cg
z(tCZ<e
Q}\Eds8
Pk!:OY
x&Mp1-
F_Rlq3P
@5*"tMt
{g-l57
UEKzF{
|(xv`0t
~`*uXx
s2c|6==h
G4cgYS5
]7gR>h
:~{GCXfb
t!Ys^`
uFUb.:c
rN]uctZ'
_UA_RI1
B%!s1%;
kaw766
*v~5qc
mXJ+|($-
dB2/*R
4mB\R%
q(lh'
wdi&.Q9K
IYi?-f
h76tT,
d7tqS5
-,N7.Js
&^dK|a
`M=y7@
ahZ64
UI;c $
kdv_nv
q9@`Y&
%SsIF<'
X!vH+]
3}q!+Z
No56DT
zv11$!
ptr!%8l
k4cS^W1
~rdR!+
UrD%SP
=Wy/-}8
0kbRjcu{
N>}oZM
DYouHVygFB
#?$oaz
xE)[W[@
h{?KqP
iwAx'Z
H?ob#q
&jGioL
WmOU"N(
udf~d;
FGUIkd
YET%>%P
h "'g
u^eQc\V
ObU7j?9
]^Ll:0
t+p5N?
cAQLp3
_{S(Ln
B[O1)T
WZyG-L:
eef|@)
1zVJ65
*SFu?O5ym
ZSzcx8
]\cJD:|
2g1/\@
]\W=$_:r
j{9.if
!{2SzE
RNOu6th
"~<]?
9*|8Ce98R&$
7q8kW~
^\.\w1
R- nD<
(k5G^c
N1>EP,.I
$-[ru^
!* 3,`NGW
~>M-tS
z^YYN{vfn?jLx*
5`xxZUM
*-h8;1M
$H<k7Q)
6V-6pz#w
TK=,[a
^]~g%1qx
Kf`eM%
N>&f&q
G_V{j,
!HtDQ^|
9KtET
/7iExH
bVSfre
q$*8&)o6
0Zo"m%
{ ps[]ys
>Ma'rU6J
tEv*nU?
IG.*3
+<e<b:
KKOyZf3f
Z4]XOj/
5[LM0>
OnZ9^X
V'1%UC
~7IB/L
<z(+4B
'+6yUF9-
CorExitProcess
runtime error
TLOSS error
SING error
DOMAIN error
An application has made an attempt to load the C runtime library incorrectly.
Please contact the application's support team for more information.
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
This application has requested the Runtime to terminate it in an unusual way.
Please contact the application's support team for more information.
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
EncodePointer
DecodePointer
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
?ZEM-'^
?{yK+;
?765@Z
?e')lW
UUUUUU
?333333
?333333
?UUUUUU
?$rxxx
GetProcessWindowStation
GetUserObjectInformationA
GetLastActivePopup
GetActiveWindow
MessageBoxA
USER32.DLL
_nextafter
_hypot
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
GAIsProcessorFeaturePresent
KERNEL32
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
1#QNAN
1#SNAN
bad allocation
xofayeponicaperaxipic bidatagobub gatazikowuw
jiluxolidezohalekasogenabenome
davonobuvomufuzojovakefinucexasoxocagogovohasacunagicey
zuviropad
yoceyekojodukaz waxecapelibumuyo gihaxizawafafukavefecivepebogica teliroxavozopifocalaxama
xusumusefuli
hodopivuhegutolexetuvenosihegase nacinigomagilayecol gikoya letihi tiledayinekajojeluhivoxasex
kernel32.dll
LocalAlloc
nozat doyidog lulecejexamihawas
C:\rojaw\yatumaxu.pdb
GetSystemDefaultLangID
EnumDateFormatsExW
MoveFileExA
EndUpdateResourceW
InterlockedIncrement
GetConsoleAliasA
InterlockedDecrement
WritePrivateProfileSectionA
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
WaitForSingleObject
SetConsoleScreenBufferSize
GetComputerNameW
SetEvent
GetConsoleAliasesLengthA
GetConsoleTitleA
ReadConsoleOutputA
GetUserDefaultLangID
CreateActCtxW
GetConsoleCP
LocalShrink
GetVersionExW
GetFileAttributesA
DnsHostnameToComputerNameW
lstrcpynW
VerifyVersionInfoA
IsBadWritePtr
GetModuleFileNameW
GetCompressedFileSizeA
GetSystemDirectoryA
CreateFileW
lstrcatA
GetACP
GetVolumePathNameA
lstrlenW
SetConsoleTitleA
FlushFileBuffers
InterlockedExchange
GetLastError
GetProcAddress
BeginUpdateResourceW
LocalLock
EnterCriticalSection
GetLocalTime
WriteConsoleA
GetProcessId
LocalAlloc
SetCalendarInfoW
CreateTapePartition
SetConsoleDisplayMode
GlobalGetAtomNameW
SetEnvironmentVariableA
GetModuleHandleA
CancelTimerQueueTimer
BuildCommDCBA
VirtualProtect
PeekConsoleInputA
WriteConsoleOutputAttribute
FindFirstVolumeW
AreFileApisANSI
KERNEL32.dll
RealGetWindowClassA
USER32.dll
AdjustTokenPrivileges
ADVAPI32.dll
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
ExitProcess
GetStartupInfoW
WriteFile
GetStdHandle
GetModuleFileNameA
HeapAlloc
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
DeleteCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
VirtualAlloc
HeapReAlloc
GetCPInfo
GetOEMCP
IsValidCodePage
RtlUnwind
HeapSize
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
raxaje.exe
@GetAnotherVice@12
@SetFirstEverVice@4
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________2
______________________________________Zy
____________________________________"
_________________________________"@
_______________________________
%______________________________
_____________________________
_____________________________
_____________________________
______________________________
d______________________________])
_______________________________
_________________________________
m{_________________________________________vS
{_________________________________________c|
%_________________________________________
%_________________________________________
__________2.
____________________________
__________
____________________________
_________
____________________________
_______
____________________________
____________________________
____________________________o
____________________________
_____________________________
;(Z_____________________________
W}______________________________
\-______________________________
_______________________________
_________________________________
______________________________________
________________________________________
________________________________________
__________________________________________c
____________________________________________c
______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________
````````````````````````````````````````````````````````````````````*w
G```````````
``````````
`````````
``````````
`````````````
`````````````
`````````````
`````````
`````````g%5
`````````
`````````
4HY~w3%
!:7~g%"
=Y_uJ23~
$MRp=0B~W
![Z~F,3
999999999999999999999999999999999999999999
99999999999999999999
M999999999999999999
9999999999999999F
999999999999999
299999999999999
Z999999999999999
999999999999999
99999999999H`
0'9999999999
S|?f9999999999
wV999999999999$x
999999999999
B9999999999999
999999999999
999999999999
999999999999999999
999999999999999999
999999999999999999G
N999999999999999999
sNp999999999999999999999999999999999999999999999999999999999999999999999999999999999999
|z~\~|
$~~z}|~
w#@X0!q:
ttAtJ|
22222222222222222222222222222222222222222222222222222222222222222222222222222222222?2222222222222222222
G2222222
?22222222222
222222222
222222228t
w2222222?
]"[5P2222222
tE^e[N"N
)P2222222
pp~t`Q
2222222
22222222Cr
222222222*
2222222222G
222222222222
22222222222222w
22222222222222
22222222222222
WMw2222222222222222
22222222222222222
22222222222222222JI
22222222222222222
d822222222222222222
2222222222222222222
8222222222222222222222
8222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222222
;;;;;;;;;;;;;;;;;;3_|`
?;;;;Bz
;;;;;P
;;;;;;-
g;;;;;;;Sy
;;;;;;;d
;;;;;;;;K1
;;;;;;;;;;#
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
kFIj/8R~J"z
3WkB&v
Uy{'6MtQ
3j~[.b
/Kc9!v
-<i?+z
mscoree.dll
KERNEL32.DLL
((((( H
h(((( H
H
dewucabateteduvecasec
gibabayugaka
ERRORDIALOG
VS_VERSION_INFO
StringFileInform
080564c6
InternalName
sigzmeogeke.ewi
Copyright
Copyrighz (C) 2021, fodkageta
ProductVersion
29.21.22.113
VarFileInfo
Translation
Error!
Select One:
&Retry
&Abort
&Ignore
"Wakevimos geviwidefokeb bayipe tiwCPufihesigi behiv mem fan bog zosivadutuzo jesezekituwew rizegeyowokmSufunuhizugu parokefakujowaj mikutojulidaf woyusotalixofun lebumo cobetik duyaxucepeb cas xecic mudinejojoruw;Nenovetuvo rotivapav yipipihalesu cihobidap xirelimevezopetXVax giwabo nagituc zit liwu zayemayefoyavec gap niyevinaror dukusohudecesim hobilemakoto
Kif mixuc cilulodoleta coforom5Pujejofixovovof lizerire yolanixivega yexuxisamagikez
KKosane laveyefafemilel xuziyoji lovebipohukul segibirap taxayanulekori jiji^Zetogizibu jejabufo cujecojufozife kuxu solejewuyil niga rotaxiyokujacin hixaxajum xanorakuzoy
PadehelicZewosinufeko xexomaxoreguyo cohudijidexe dove toketagigekiha fogapine wemubelicuv fatavefi cokijuki
Rezis+Yixazihajiyulav famumuzabano peyozarajasedi
Antivirus Signature
Bkav W32.AIDetect.malware2
Lionic Trojan.Win32.Malicious.4!c
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.37415943
FireEye Generic.mg.af23965c3e267394
CAT-QuickHeal Clean
McAfee RDN/Generic.grp
Cylance Unsafe
Sangfor Trojan.Win32.Save.a
K7AntiVirus Trojan ( 0058102f1 )
BitDefender Trojan.GenericKD.37415943
K7GW Trojan ( 0058102f1 )
Cybereason Clean
BitDefenderTheta Gen:NN.ZexaF.34088.rq0@a4blo4hG
Cyren W32/Kryptik.EUY.gen!Eldorado
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Kryptik.HMCH
Baidu Clean
APEX Malicious
Avast Win32:RansomX-gen [Ransom]
ClamAV Win.Dropper.Jaik-9886409-0
Kaspersky HEUR:Trojan-Spy.Win32.Stealer.gen
Alibaba Trojan:Win32/GenKryptik.d81784cf
NANO-Antivirus Clean
ViRobot Clean
Rising Trojan.Kryptik!1.B40D (CLASSIC)
Ad-Aware Trojan.GenericKD.37415943
Sophos Mal/Generic-S + Troj/Krypt-W
Comodo Clean
F-Secure Clean
DrWeb Trojan.PWS.Siggen3.2180
VIPRE Clean
TrendMicro Mal_HPGen-50
McAfee-GW-Edition BehavesLike.Win32.Emotet.dc
CMC Clean
Emsisoft Trojan.Agent (A)
SentinelOne Static AI - Malicious PE
GData Win32.Trojan.PSE.QGYM9G
Jiangmin Clean
eGambit Unsafe.AI_Score_94%
Avira TR/AD.RedLineSteal.qhsrs
Antiy-AVL Clean
Kingsoft Win32.PSWTroj.Undef.(kcloud)
Gridinsoft Trojan.Win32.Packed.vb
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan-Spy.Win32.Stealer.gen
Microsoft Trojan:Win32/Mokes.MAK!MTB
Cynet Malicious (score: 100)
AhnLab-V3 CoinMiner/Win.Glupteba.R437490
Acronis suspicious
VBA32 BScope.Trojan.Eb
ALYac Trojan.GenericKD.37415943
MAX malware (ai score=89)
Malwarebytes Trojan.MalPack.GS
Panda Trj/GdSda.A
Zoner Clean
TrendMicro-HouseCall Mal_HPGen-50
Tencent Clean
Yandex Clean
TACHYON Clean
MaxSecure Clean
Fortinet W32/GenKryptik.FJEX!tr
Webroot W32.Trojan.Gen
AVG Win32:RansomX-gen [Ransom]
Paloalto generic.ml
CrowdStrike win/malicious_confidence_90% (W)
Qihoo-360 Win32/Ransom.Generic.HgIASacA
No IRMA results available.