popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

kv3.dll

Generic Malware Malicious Library UPX PE File DLL PE32
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Oct. 16, 2021, 1:19 p.m. Oct. 16, 2021, 1:22 p.m.
Size 966.0KB
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 5c76498485ac6534b1b1aa0d6d543762
SHA256 d3fa92f89ffbc4403c0f8b95034a61d63cfb47fd11cb7d90b5a8d724250234a3
CRC32 CD074F6A
ssdeep 24576:EFYpMTTHVlVTyv7o5pGyctKIvOO1CjdekTVzGLnHhtRfDVaG:EQkT1fo+xlVzGLnHLza
Yara
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section CODE
section DATA
section BSS
section {u'size_of_data': u'0x00027e00', u'virtual_address': u'0x000cb000', u'entropy': 7.231887069652582, u'name': u'.rsrc', u'virtual_size': u'0x00027e00'} entropy 7.23188706965 description A section with a high entropy has been found
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.Agent.FNEN
FireEye Generic.mg.5c76498485ac6534
McAfee GenericRXQE-HF!5C76498485AC
Cylance Unsafe
Zillya Trojan.Qbot.Win32.13784
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (W)
Alibaba Trojan:Win32/Injuke.55d256c5
K7GW Backdoor ( 005826091 )
K7AntiVirus Backdoor ( 005826091 )
Cyren W32/Qbot.CU.gen!Eldorado
ESET-NOD32 Win32/Qbot.DD
Paloalto generic.ml
Kaspersky HEUR:Trojan.Win32.Injuke.gen
BitDefender Trojan.Agent.FNEN
Avast Win32:DangerousSig [Trj]
Tencent Malware.Win32.Gencirc.10cf3f56
Ad-Aware Trojan.Agent.FNEN
Sophos Mal/Generic-S
DrWeb BackDoor.Qbot.623
TrendMicro TROJ_GEN.R002C0DIN21
McAfee-GW-Edition GenericRXQE-HF!5C76498485AC
Emsisoft Trojan.Agent.FNEN (B)
SentinelOne Static AI - Malicious PE
Avira TR/YAV.Minerva.ziose
MAX malware (ai score=89)
Antiy-AVL Trojan/Generic.ASMalwS.34A51D5
Kingsoft Win32.Troj.Undef.(kcloud)
Gridinsoft Trojan.Win32.Downloader.oa!s1
Microsoft Trojan:Win32/Qakbot.RVA!MTB
ViRobot Trojan.Win32.Z.Agent.989216
ZoneAlarm HEUR:Trojan.Win32.Injuke.gen
GData Trojan.Agent.FNEN
Cynet Malicious (score: 99)
AhnLab-V3 Trojan/Win.Trojan-gen.C4644585
VBA32 BScope.TrojanDownloader.Deyma
ALYac Trojan.Agent.FNEN
Malwarebytes Malware.AI.4287694877
TrendMicro-HouseCall TROJ_GEN.R002C0DIN21
Yandex Trojan.Qshell!Ge441644sf8
Ikarus Trojan-Dropper.Agent
MaxSecure Trojan.Malware.74209402.susgen
Fortinet W32/Qbot.DD!tr
AVG Win32:DangerousSig [Trj]
Panda Trj/CI.A