popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

1970-01-01 09:00:00

PE Imphash

9cbefe68f395e67356e2a5d8d1b285c0

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0023bd71 0x0023be00 6.03833015
.rdata 0x0023d000 0x001f7efc 0x001f8000 5.75106947978
.data 0x00435000 0x00064b20 0x00035400 5.80958862158
/4 0x0049a000 0x00000127 0x00000200 5.09787407421
/19 0x0049b000 0x00065dfe 0x00065e00 7.99559003854
/32 0x00501000 0x00010e5d 0x00011000 7.97816482731
/46 0x00512000 0x00000030 0x00000200 0.855684854017
/65 0x00513000 0x000a1fa1 0x000a2000 7.99696037656
/78 0x005b5000 0x00093f7d 0x00094000 7.99598494213
/90 0x00649000 0x0002a91f 0x0002aa00 7.93845185963
.idata 0x00674000 0x000003dc 0x00000400 4.60295693838
.reloc 0x00675000 0x00016d8c 0x00016e00 6.66482197275
.symtab 0x0068c000 0x0004bbc7 0x0004bc00 5.34876547329

Imports

Library kernel32.dll:
0x8350e0 WriteFile
0x8350e4 WriteConsoleW
0x8350ec WaitForSingleObject
0x8350f0 VirtualQuery
0x8350f4 VirtualFree
0x8350f8 VirtualAlloc
0x8350fc SwitchToThread
0x835100 SuspendThread
0x835104 SetWaitableTimer
0x835110 SetEvent
0x835114 SetErrorMode
0x83511c ResumeThread
0x835124 LoadLibraryA
0x835128 LoadLibraryW
0x83512c SetThreadContext
0x835130 GetThreadContext
0x835134 GetSystemInfo
0x835138 GetSystemDirectoryA
0x83513c GetStdHandle
0x835148 GetProcAddress
0x835150 GetConsoleMode
0x835158 ExitProcess
0x83515c DuplicateHandle
0x835164 CreateThread
0x83516c CreateFileA
0x835170 CreateEventA
0x835174 CloseHandle
No antivirus signatures available.
No IRMA results available.