popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

kubar.exe

PE32 PE File .NET EXE
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us June 24, 2022, 9:41 a.m. June 24, 2022, 9:50 a.m.
Size 62.5KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 2fc87b78d28e559052c680fe891796ef
SHA256 4af6ad9cb7c52362c67750fc09eb98b55e19d1e781ab91b2c8a62071c62eaf97
CRC32 E5CB8AC2
ssdeep 1536:mGOKXqNKAuDUaQl+kzdC9GiZQWSwi/fUpS/fX/MN2:4vQAuis1Jy///f/Mk
Yara
  • IsPE32 - (no description)
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • Is_DotNET_EXE - (no description)
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x0000dc00', u'virtual_address': u'0x00004000', u'entropy': 7.286430092424855, u'name': u'.rsrc', u'virtual_size': u'0x0000dbf4'} entropy 7.28643009242 description A section with a high entropy has been found
entropy 0.887096774194 description Overall entropy of this PE file is high
Bkav W32.AIDetectNet.01
Lionic Trojan.Multi.Generic.4!c
MicroWorld-eScan Trojan.GenericKD.49231900
FireEye Generic.mg.2fc87b78d28e5590
McAfee Artemis!2FC87B78D28E
Cylance Unsafe
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Trojan-Downloader ( 005903241 )
Alibaba Trojan:MSIL/Generic.8a648a15
K7GW Trojan-Downloader ( 005903241 )
CrowdStrike win/malicious_confidence_100% (W)
BitDefenderTheta Gen:NN.ZemsilF.34742.dm0@aeRZmY
Cyren W32/MSIL_Kryptik.GXH.gen!Eldorado
Elastic malicious (high confidence)
ESET-NOD32 a variant of MSIL/TrojanDownloader.Agent.MHT
TrendMicro-HouseCall TROJ_GEN.R002H0DFN22
Paloalto generic.ml
Kaspersky UDS:DangerousObject.Multi.Generic
BitDefender Trojan.GenericKD.49231900
Avast Win32:DropperX-gen [Drp]
Rising Trojan.Generic/MSIL@AI.98 (RDM.MSIL:mCC0V7QgpQ0KjkRRbLlBsA)
Ad-Aware Trojan.GenericKD.49231900
Emsisoft Trojan.GenericKD.49231900 (B)
McAfee-GW-Edition Artemis!Trojan
Trapmine malicious.moderate.ml.score
Sophos Mal/Generic-S
Ikarus Trojan-Downloader.MSIL.Agent
Webroot W32.Trojan.Gen
MAX malware (ai score=88)
Gridinsoft Ransom.Win32.Sabsik.sa
Microsoft Trojan:Win32/Sabsik.FL.B!ml
GData Trojan.GenericKD.49231900
Cynet Malicious (score: 100)
AhnLab-V3 Dropper/Win.FDIL.C5178501
Acronis suspicious
APEX Malicious
Tencent Msil.Trojan-downloader.Agent.Hwdk
SentinelOne Static AI - Malicious PE
Fortinet MSIL/Agent.MHM!tr
AVG Win32:DropperX-gen [Drp]
Cybereason malicious.906e45