Static | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.20 09:11
mainbas.bat
11.20 09:11
dll007.dll
11.20 09:11
exe004.exe
11.20 09:11
exe010.exe
11.20 09:11
blecher.exe
11.20 09:11
GetAdapterInfo.exe
11.20 09:11
dll004.dll
11.20 09:11
dll008.dll
11.20 09:11
bestthingsalwaysgetbes...
11.20 09:11
DKM-9067291.pdf.lnk

Latest News
11.20 08:11
6 Common Persistence M...
11.20 07:11
Zimperium Predicts Dat...
11.20 07:11
Black Friday season ha...
11.20 07:11
Ghost Tap: New cash-ou...
11.20 07:11
AI Granny Daisy takes ...
11.20 07:11
heise-Angebot: heise s...
11.20 07:11
Google Chrome: Schwach...
11.20 07:11
Apple Safari, iOS, iPa...
11.20 07:11
[UPDATE] [mittel] Pyth...
11.20 07:11
[UPDATE] [mittel] Open...

Static | ZeroBOX

PE Compile Time

1970-01-01 09:00:00

PE Imphash

4bfde1223391e32fec766cd1d41fa3e7

Sections

Name	Virtual Address	Virtual Size	Size of Raw Data	Entropy
.text	0x00001000	0x00000418	0x00000600	3.85351034665
.rdata	0x00002000	0x000004ad	0x00000600	5.29293223844
.bss	0x00003000	0x00000004	0x00000000	0.0
.rsrc	0x00004000	0x000001f0	0x00000200	4.80843328983

Resources

Name	Offset	Size	Language	Sub-language	File type
RT_MANIFEST	0x00004058	0x00000198	LANG_ENGLISH	SUBLANG_ENGLISH_US	XML 1.0 document, UTF-8 Unicode (with BOM) text

Imports

Library msvcrt.dll:

• 0x40234c strlen

• 0x402350 malloc

• 0x402354 memset

• 0x402358 _sleep

• 0x40235c __argc

• 0x402360 __argv

• 0x402364 _environ

• 0x402368 _XcptFilter

• 0x40236c __set_app_type

• 0x402370 _controlfp

• 0x402374 __getmainargs

• 0x402378 exit

Library kernel32.dll:

• 0x402380 CreateProcessA

• 0x402384 CloseHandle

• 0x402388 SetUnhandledExceptionFilter

!This program cannot be run in DOS mode.

`.rdata

jp.(lz>x>:3b<t^4:)u,bdb^.10rw@at

OEXR7hE

}L(LUU

OEQ^S%

MBsh^B

HBF#:J

,AVB>K_A5\

-@_D[b

^MqO_D

XKJ&1Y_\

2QS]Ol

BzK_FH60

pKIUU^iCTLP^G

=KBCRZ

2QS]Ol

BzK_FH60

msvcrt.dll

strlen

malloc

memset

_sleep

__argc

__argv

_environ

_XcptFilter

__set_app_type

_controlfp

__getmainargs

kernel32.dll

CreateProcessA

CloseHandle

SetUnhandledExceptionFilter

<?xml version="1.0" encoding="utf-8"?>

</requestedPrivileges>

</security>

</trustInfo>

</assembly>

Antivirus	Signature
Bkav	Clean
Elastic	Clean
MicroWorld-eScan	Trojan.GenericKD.37956022
FireEye	Trojan.GenericKD.37956022
CAT-QuickHeal	Trojan.Bsymem
ALYac	Trojan.GenericKD.37956022
Cylance	Unsafe
Zillya	Clean
Sangfor	Trojan.Win32.Bsymem.aduu
K7AntiVirus	Trojan ( 005883fd1 )
BitDefender	Trojan.GenericKD.37956022
K7GW	Trojan ( 005883fd1 )
Cybereason	malicious.44e539
Arcabit	Trojan.Generic.D24329B6
BitDefenderTheta	Gen:NN.ZexaF.34266.aqW@amCCMvai
Cyren	W32/Nitol.AO.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Agent.ADMO
Baidu	Clean
TrendMicro-HouseCall	TROJ_GEN.R002C0PK421
Paloalto	generic.ml
ClamAV	Clean
Kaspersky	Trojan.Win32.Bsymem.aduu
Alibaba	Trojan:Win32/Bsymem.f6c42b6a
NANO-Antivirus	Clean
ViRobot	Clean
Tencent	Win32.Trojan.Zusy.Htmd
Ad-Aware	Trojan.GenericKD.37956022
Emsisoft	Trojan.GenericKD.37956022 (B)
Comodo	Clean
F-Secure	Clean
DrWeb	Clean
VIPRE	Clean
TrendMicro	TROJ_GEN.R002C0PK421
McAfee-GW-Edition	GenericRXQB-TQ!9B2F6BE44E53
CMC	Clean
Sophos	Mal/Generic-S
Ikarus	Trojan.Win32.Agent
Jiangmin	Trojan.Bsymem.bqn
Webroot	W32.Trojan.Gen
Avira	TR/Agent.oflcc
MAX	malware (ai score=100)
Antiy-AVL	Trojan/Generic.ASMalwS.34C9F2A
Kingsoft	Win32.Troj.Bsymem.ad.(kcloud)
Gridinsoft	Ransom.Win32.Wacatac.sa
Microsoft	Trojan:Win32/Tnega.C!MTB
SUPERAntiSpyware	Clean
APEX	Malicious
GData	Trojan.GenericKD.37956022
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.R440300
Acronis	Clean
McAfee	GenericRXQB-TQ!9B2F6BE44E53
TACHYON	Clean
VBA32	BScope.Trojan.Nitol
Malwarebytes	Trojan.Downloader
Panda	Trj/CI.A
Zoner	Clean
Rising	Clean
Yandex	Trojan.Agent!yGmq2coH6pk
SentinelOne	Clean
MaxSecure	Clean
Fortinet	W32/Tiny.NFR!tr
AVG	Win32:TrojanX-gen [Trj]
Avast	Win32:TrojanX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (W)

No IRMA results available.