Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.19 07:11
4f3200e5324a333579e06e...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 07:11
6e1ed6447607ab4c30b3f3...
11.19 02:11
Potwierdzenie.exe
11.19 02:11
cheet.exe
11.19 02:11
chelentano.exe
11.19 02:11
12.exe
11.19 02:11
caspol.exe
11.19 02:11
gambinho.exe
11.19 02:11
Getdp.exe

Latest News
11.20 07:11
T-Mobile Caught Hacker...
11.20 07:11
Securing the RAG inges...
11.20 07:11
Atlassian security adv...
11.20 07:11
Westpac NZ CEO Urges F...
11.20 07:11
Nach Cyberattacke: Süd...
11.20 07:11
Nach Cyberattacke: Neu...
11.20 06:11
Apple security advisor...
11.20 06:11
The DOJ Goes After Goo...
11.20 06:11
Qualcomm Expects to Ma...
11.20 06:11
Raspberry Pi Compute M...

Summary | ZeroBOX

ChatGPT.exe

Generic Malware UPX Malicious Library Malicious Packer PE64 PE File OS Processor Check

Category	Machine	Started	Completed
FILE	s1_win7_x6401	March 8, 2023, 5:27 p.m.	March 8, 2023, 5:30 p.m.

Size	3.1MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`cd12cb026f70700b6d7d3122360c52e8`
SHA256	`70805738871f24f390c7b1e62e6b48bc4850399992d8b62bba3160550a0a3655`
CRC32	`A57CF6FD`
ssdeep	`49152:T5wh59b5nEKS6JKokJL06d4vD9GJjq/5qS3mynxdD4/7AQxDy:TUnuxBzd1IgYmoIfD`
Yara	UPX_Zero - UPX packed file Malicious_Library_Zero - Malicious_Library Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check Malicious_Packer_Zero - Malicious Packer PE_Header_Zero - PE File Signature IsPE64 - (no description)

ChatGPT.exe "C:\Users\test22\AppData\Local\Temp\ChatGPT.exe"
2556

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 11 AntiVirus engines on VirusTotal as malicious (11 events)

Elastic	malicious (high confidence)
Malwarebytes	Malware.AI.4205022066
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/Spy.Agent.FD
Cynet	Malicious (score: 100)
Kaspersky	VHO:Trojan-PSW.Win64.Convagent.gen
Trapmine	suspicious.low.ml.score
ZoneAlarm	VHO:Trojan-PSW.Win64.Convagent.gen
Google	Detected
AhnLab-V3	Trojan/Win.Generic.R550090
Ikarus	Trojan-PSW.Agent