Static | ZeroBOX

PE Compile Time

2021-06-15 17:33:06

PE Imphash

f34d5f2d4577ed6d9ceec516c1f5a744

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x000169c4 0x00016a00 7.43527119669
.rsrc 0x0001a000 0x00010e80 0x00011000 3.40690865114
.reloc 0x0002c000 0x0000000c 0x00000200 0.101910425663

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x0001a18c 0x00010828 LANG_NEUTRAL SUBLANG_NEUTRAL dBase III DBT, version number 0, next free block index 40
RT_GROUP_ICON 0x0002a9b4 0x00000014 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_VERSION 0x0002a9c8 0x000002cc LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MANIFEST 0x0002ac94 0x000001ea LANG_NEUTRAL SUBLANG_NEUTRAL XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators

Imports

Library mscoree.dll:
0x402000 _CorExeMain

!This program cannot be run in DOS mode.
`.rsrc
@.reloc
<Ih1~
xwr\uh
x[XVBb
7ytPVp
Fi)wrm;
yQ7#YI
dIeY(x
hTVG(.
8O*GOc
<z{G3Y
6~Ni'X
R2i4|^
SOti4+y
{8/P(JR
4LQ|bR
P0C2n`A
X6uY'"
fMX_ 1o
W"'vWl
$Ei[n#
T@+U?s
l>+Uy9g
`=r9D
1]6eSCC
41`2Y^
;\/ybh
`xREZ1
kX!>sY
"\Bdw&`)n
[)6Pg+
1fexCT
:B2Yh@
*kD:Q\
K'W!z72
cbdWRw
x|%,5Fx
D\=s3V
{/{fUp
~Jb~@:
q92HAx
rg4;<H
#y]cV3
T]gR|S])
A8<?[0}Z
{8d^P$n{>
_D>>DS
+[K7ak
{pWgMPP
5 C[O ^8
B]YWM,
EcK</{
b~3CAg 7e
xYd^Zz^.}[
`A2lPp
21(Au)
$7oY5`Y
Jj/Aq6
W!Lu."
'zxblo\
\k{c_;
0[b1'v]
6J8 eK
c_!~?I,
\vDC!<
gq~kPZ2
DhZtzZ4
,=*,h
yNoK;,C
1u43%+
%@A:Z
VMDj^m
3Z Ub&
2ihsZ
s1`a8B
D0Z R9
eGkZ
Z?_b`
Z E;"ua8a
Z?_b`
[NBa8
v~ha85
Z tyfpa8P
bu%&8^
$v)DZ
+P*?Z
_bj/
_bY*
{ F'l=a%
Z JS\za+
=RZ 6q
C &2~Ra%
8?[tZ
m4%&88
j56%&8y
(%Z {{
6E:{ 'l:wa%
)N\Z T
"RzYZ
BZ VyyEa8
)&Z [ Pa8-
tXZa8P
,Z $~I~a8z
68^Za8
VS@+8`
)#G%&8
=XD[Z Y
)!+M%&
Z_bX
BxZ wI
;:%&8X
Y_cX*
.[ ov+
g4Z ',sxa+
>Zhn%&+
_bj/
j|iA d
izj;8e
_bY*
Z"sZ Y
.z eB3
0Z :Y_
Z UU,Ha8
WGW=Z
eUpq%+
=fijZ +
;a8p
}Jla8|
Z_bX
<,D.%+
?'Q,+
\Z .3p
Y_cX*
B.>K%&
tQ[K%&
g ,2Za8
v4.0.30319
#Strings
#Strings
#Schema
SystemSocketTasks.exe
<Module>
DataField
NBWSSpRkLzHcbRcmCbneGKrmcJlQAfR>V"*Z0Ieu@~Y\7/C~Q9fra#
mscorlib
Assembly
System.Reflection
UsXSWqaMoYBvzbwZxDcezREVVmEp-e@^Y*;*P,c ]B=q3iYp#(WR(
Decrypt
GCHandle
System.Runtime.InteropServices
Resolve
ResolveEventArgs
System
Decompress
.cctor
sCGPVtIglKZDEcMhAaVDlducbxbhAGxD+e)jq|)!=$W+d?lGoC&_W&
CnkCEulxylmcLEmUjKiEifOmWhQd|i&VCA/CYKlt{z_@Tm"sK^HX
RuntimeFieldHandle
XJrmRUOUXBBbUHdQSCjCkEuGVEBE>#?}dJD\V<%><$>6x:CFLf-!%
ZLoTkAUKjLaiJBEEhDomSkgndxKeb%^7?%9VmTQ~D-BMSJ3(CS]@d'
Module
EaaGYJaGwQDBhhIiYmfqDjoPfcuibd#/8:^/Cb07}FeJcg"[C\{0u&
Encoding
System.Text
OvYYXKgUQRoFLpQOnxmXxofcqOff`brP>;H6!$2(HvM?vFu?/"in!
tgHYakQPYMCxqAKScDACYDFmUNWfWTqjmxzJ_|_l~eO-hVB|g:l<
AssemblyName
DruxHjKGjPWktCdZURfCudejClpNdemG;luJ~P3lJ%dhLW-Kyk d
wLfKZScOTVQrZFSKqOCkBqvADkmeAwH9)V(ATry0]+8s>E}|G) ,_+
KAxylHrWndngDYkQgOkGFgBmtECY),a76FA"O51)f:[Q7%8f/j':1
fGCBSgftHVZtVNjIzJIahujXKWSBbEPFZwLoP:{bZa![H+oqC0\:p'
WnkNYqMFqKwnyISDydMpSOnkeVGdA+%{'q&j,D{7n^ZY`gY6uUnF~$
iMwjBsKfKsORSlHuJYBxPTDkdLC;<ahk+vlW%dROy22>wv@M60!
Stream
System.IO
uIcFYgiiOpAdaazMRyZajeWeLGqYK-(RWV9x1W=Ka6#\[?=N1'ly"
uBEyuCFNhngqjKUCSGHhJQrauRjvG-<i)APk{SUTv-|hIo0oM lS,
TeCHKhjbnsLEojKFfYaDdlnzeWCdB6FX:mV E"-5/#XZ7e8(*7`<X6
uzGOorOcsWAJlPZJJsYEVEqMrTQfwn\b7XA9r^Sz:R2*DJ!o>&:;!
MemoryStream
mMfVnuAmtEdjPWAvfGxUbzsyyAqSA]{SKa*fOVwzLJ1Yu''GQ{P8 &
diNXBooDNndGschNJJDFiPebtyNQB75x>q?qLu^Q[q<|RXr-Qw5y'$
GEgCZOCChUsaFhCoAwFkgWlaMyWFA|jqhd<nMb5f\De|%uc81&kV""
vknOQKbxUuEhGyfpxpsIfROCrwDHs9aJ#e`49lR(cg1;+}HLLmTS!
aRTYbcbvzrfgRHgKRLchVAzzQVXdu#5t9{c*o X83V)-}JPgYj6H
DataType
ValueType
BitDecoder
Decode
yMFfuCgBxFoYQjwBFqKqpjAAOaZpSnvSPq [-RHF[0|R=Uc#TYCR#
BitTreeDecoder
Models
NumBitLevels
ReverseDecode
Decoder
Object
ReleaseStream
Normalize
DecodeDirectBits
OotRBNQMueoZPdndCAAcYjFhpyWOnCq#R60eu'*nA_P\z&\>"g#\%
LzmaDecoder
m_IsMatchDecoders
m_IsRep0LongDecoders
m_IsRepDecoders
m_IsRepG0Decoders
m_IsRepG1Decoders
m_IsRepG2Decoders
m_LenDecoder
m_LiteralDecoder
m_OutWindow
m_PosDecoders
m_PosSlotDecoder
m_RangeDecoder
m_RepLenDecoder
_solid
m_DictionarySize
m_DictionarySizeCheck
m_PosAlignDecoder
m_PosStateMask
SetDictionarySize
SetLiteralProperties
SetPosBitsProperties
SetDecoderProperties
GetLenToPosState
gAABuZGzqsOPdOWIgRCpboMxSCqfKbB@ d (E#6T0:O+mO&@5p1U
LenDecoder
m_LowCoder
m_MidCoder
m_Choice
m_Choice2
m_HighCoder
m_NumPosStates
Create
LiteralDecoder
m_Coders
m_NumPosBits
m_NumPrevBits
m_PosMask
GetState
DecodeNormal
DecodeWithMatchByte
Decoder2
m_Decoders
OutWindow
_buffer
_stream
_streamPos
_windowSize
CopyBlock
PutByte
GetByte
obDvIWwUCVUJwZqnmePExPFFYxiA1D"EBu~p:j!^quPuh%2~N~Y-
HEKufafmfBIUvDYleSrjQPYDKszVAxUd5Y91_pt*7`(E5R]hbfc6k&
UpdateChar
UpdateMatch
UpdateRep
UpdateShortRep
IsCharState
KzbWDCBoFRIiyQJsjphtmeCVFuknN,EpN@Q~pl;f_C3c1+"rhG0c#
FoXTxOCPhrqJxJOJXNSmLazgHfgRF`JO^7fosnw9|f~jg'>K"7=?"
MQPrkuNaxZfXGuVgNbTjsPIwssnfBe:$"v*"t(j{FU|wac6`{Ig5!
aLMGvbvQavMsgRSeeoznDigcQqjjqW%'U1DI,6[\G,7C"E!u,l0c$
wByJPdDjSyQAgqOfUdzHUTKqKPQJ{TU8$~!d$<A*09FoL]N:}j8b"
vnxnetXMZBWvljOwPgmSkjRUzbKQA(%ag_(+%v,5T"]teMnkPZm`F&
kisZyEikfQzpoXbTIKXxXgvzPAhO_xwD27o{+(sZ4J%6k=Vq_HYv!
eVESRkfLSDNFeJMUkxiyPLbUOcOv_hxx*%m8df${n6Ma*x#Y\1|P"
BiXQdNeRRmcndpogmGyicaaJpabibv<p7^+K2k[g$YW399wI;+9AO&
vGaFMWsGzYkMsBkzXfVmwnnOaPTHMZOp!=?w!_]tuV<Y7$C/ZCr!!
MyMbwpmBCJhYezMkERVKVhGFwNNe+4@ s]7NTAsGo#%h4<xO-u:B!
tqSiyJBECUVHZWijRegKDWXwKsWt&1PQ0&0<^8$xze2oD<PrSA,t'
mICfskrrdtMKFZkdpPhpocmTWBzPqip$}&*]i6l5>Cka0GU;^#BQ)
aWwNkDjrOZaARjMhFaCNqhYjSYvW/05YZ2A4FFZ#>=<!G2C2=RyU#
tlpkfNUWzKybVZADiAgmXWrESGov1|{&#p+{V}jdcZsaS6hYDX(U!
yeaAhHqfwqbkOGmltWGCSEGXzunbAY*9(bcB],}#LaM['^W-<V&Dw"
iZMPkYOrMInLiAdXMCIYLDhYFljLgJ!djhL#V7[!u{T#N(xqRTS]!
wotdBxYdJIngFcfIPmHCsxHwnoVNEScryR1j)=r<e4N<0PwL1o)P$
PBOFyMfWVClhjtUbzVMcmOUzDJzBl'h[}c0P"Auu!3q~-Gn*a#|Y
IOYTkGXokEcFbuQzkCTnlgcTBvev!aL*V3JM8D,&W"a$8; _#=YY5
UtfExfqoZDmcnwbgMdSasmOvpqfyX`KRCq;||*s"\5fV"L]t3gSY"
qbUTuzFwmJLLaCSbKPdqaemtkLAV*'#z7`},z25NO1<lWbiKQd(f$
MXAnuSrQHGhBnJQLCBouwGojBIgw\H|Un$bN`MYp zZ%O`;UkD+G%
btyfbWdCAkZzGJBXdvhYMkzrDEnP7u={f5:2Am-?:feQ!LzQ{Tlm#
sRlKAZYdRoNtnKkZEsxDKDyklrTPMOE!P&~Pi,,>~`0G"dHY ;E`&
cCSNRQmlrGeKPElTvcRTcRdGoxCt&xHD:3F d!0QJzIzrN_mV9Rf$
opFoKUiReRbtCTvDCgRYhbrqSolH9?HQ8U?Q%(ntOVT[n3k{(JSK!
opKnJpeJrSEDNgSvVLjtnJckMHUeAEiHr"(*CPBT1~]f?CIr5m$'p+
VjhOIHqzvSocKYRYZaVUnOdLETsl` fJ6Cg4=,n%<z@]4EuVN<o)
GHDhFvjTkWmDjIzzkSZkMFboRSbrA%,jZed2/~fcy{5eD;Fd?ORO"$
HPwZvamIJkYjxhHFiLiSlihClugGDGm8E$|:7f?]24K`2&1mta'Y$
NHgtOCLwniwgSZqERdNtMaTECpjbADYQ-@0`Qy5$J--T&dg\V>]GK1
FsaZgjBGoTQhLtoLuZuZfsvApUgRB@qg*K^c^Ox$aXA[+%;wddj/#
IvDsqKdICuVWcjpGievPCmfSPexwJK'&'>1VMjA57`}sAvhq)S~$#
LIxVOVCTkYVvwzArQErDeIEVwMGEz!ur6Rl/X@gc/BN%:;d#^{fU!
TSRpcXcpDfNVZxgQKCQjbQuqNlNjb-+j$<7u^3H-Jmb'jYo%c}ws-%
FNRHhUoFTNEDsFiypIXXWnkoFyaiA!-x(X!A-VX";oW5#hJ~Qk\}*-
CMjorUqeoAkeAKlIfejosZQagVsFd`k;X;EMD,ZDV0*a{0up$$=A!
ZRXHHopVxlbgeEceWAQghWprgOGsAr2%0$$Eg;?+m0i'-Ia|C}@:H-
WRKuLWGNpeJHGHPUqNBTsGvpPjut\dd-v3RQ]B%n!'uzJZu9s/&;-
daPyIjmDawhgXEhoCeMULfcqDvnebE+R2wGm;k]"<]1%%UR/&&PK5-
FqrrYIVGrGLMwkaRMqaeEKclDBXRpE9|>5'EfVYES`v*V"@g;D}R#
ijwwIcfDIvVfqtXAkIsPKjuqznQQawK\[4,bO{W4aDKs`Jroo,2d'
DJUrCwXCuxJRDHSbtvVjKcWFCNRMZ>@PO4-[$2'`lkS&UwFbR<%h(
jvIaoUaiFBstxukPvhtEIMFHmAFbA(>t{:g~'>&w* Zi"$rhP<-*h"
IrErzXIWxiIBycHIHFCPjRaDOaOLA!G~Cj00a[Z#["Rzd'Drc^DqF&
aQqPsrfHvUbUVUhLISKqqKTRfVRaAQ(= q:=9rzzvZx'Bo`3>~j^\$
RFkFdtojhIyXIjZaemErmTqgwelB6W!d9K&(z[b,f4{Ezg<7e_mO
pzuflpbhzsasJrCqInWtnnFIIjOdAY@w[qPMQiIV)TeH6,[[2'#UZ*
KkQSAZCAmERPFNShPVDMNZYbBNqfBAlL-6$$PF^pSW6bh'l!,~IC!
PNyzeIUgpbbcfevyIlgeAoTikqBnAX;mCvM#_YK-A_QdAiuAF("`j'
oOXhrsrTCRCGqwaRlrdkFuATmhvP=/P]{sW-<hYI&6C/7ej4B(T}#
cerBTSuEPHjxupgTrPhcBOPihVZL,*{<-/lBDiE,E:5e1,R#;?,)%
mYChgOnSadGQAqrycJCsuXoIeIvGuVKYR5N/"hVqAD,+_CP%fuKo
lAWbZNHlOHGhaCmnrdsZLmqQWDEjwKD50rP\lnE65I5mVN0o6xnS"
tXcLnTlNJMZCakHORdnVCnTCrpiTiHuP`3;\0`I&G+!{p/-J|$pG%
RIvUCzqQpyONvmVLRFTXOlFgjAHgDyS81o'=[018k!XZ%tr wo|Q!
xqXpovlKkGQFSplzUixikApaGPkDU@BGOUXSjD%y-M`$m*A#(R&($
uWRJfRcbCLidMCYkyVfdejRgBcAEqjDRcK[,ZMTlp+/-=3`Uyp2_
bPiCrbFfmRtOILdSrPAyoJhqFxupYTwM"d$O4D@ZJbo~/KI,/*uG#
eIMESiZxYJRxFuqYhQWTnaAHGeQh/0>|}-lfnf6((mE`t(K,+j D%
SnUKnTyCpBFDbbHqFLGzWCZaJhVzAPJXE2){?8H]6hSFNE1x@a5$X*
SMvCsmNgiZxXabPXkldSWThnlPyH%a$r,60Y@mUM\Tw \JR3wk3`"
eEberljhTgEreMjVDcRgAwMZGdvkuW[&yezLK8,xV@xu&!)r6f"A#
JBTaftvLKtQahufxEopsTgEQJavxLq%WEg3^gdqa]Mh(Y7`<v=&*$
lKiCuUFVTuGcSoHsIcFpjewGhbKqA;OwS6^~ts9x$S*'0}V{EDu|n!
sdsToQNtGORkEXHrboqevuTVgpEWOT?qR5+:nGpdz*11Y7g<F0=)/
CTwDYgtHQTbwPCeqxpEJwRRbAlKyAN{='{Hy8Dw:'a(]@P<|PqabR&
ANSNcKdeuQWmQSgGOoPRRwMmWtOw4%-sJ/1_`1(n20<#EJ8p/9DX%
ONGvqifegjEbFjnXJohuYFcglMNfbl|!1*25Ww92Jcj!M<;J1$cnZ+
VJdaIgWIwMdwlewQMlARUEqCrqfDA\1iz?h'3:,9\A)D6\_Xo~M1k"
IKCGazNgsgDSgFuupVYMIOvJAqArAP^&^KtedubESyNnv5\Zb9
zXKaAsDZbSMoKfbAUaFYdKhcffkLb[cvj1;>{fG|jKBl:<^>QKY@*%
YOsvMyfKRuLCMyBJzLWVfFxnppffFcs1U&F}IRra+E7>z;E9iI;e
kpMWyqXTLAJRFhvFvCjHoKVWxVJUC~l{c2BdF`R6EnikUns->B~n#
jLSueCOdvFlcZfDCNEjAtGIjHHSGA}BFC)N&s!m-#?-#$!+;B"^x`#
skYESYDaKGemrqiVIldcINnMDNbDA*2V|t~n-TC(_L#Zu(?vKJR}d"
EKErVZyqscHmGcRtsCPWsQorvIJVf?~\B+y"*&'fW EbPtQ*q^Z)-
uhHnlocLqWzsKlvYfHeNDgeopmqu_`Bu (;,VC0D]+s9{44aOhaW+
iTGhLiarTdCKzLZDSFjcgLmIZsjJ*DJMc;DF[XM-h`#B1COW4'&1"
vlCkglmWppILftHHiNLyWcLcfpoS5|81c*2(c-5S{-;xe1#Z1;k)"
byiEMddPGgiQgZefszXTqKLnBcCGA3?*^mR>-[f,C=$C-hl(~eJQP+
xguIIVZuKPOQAEKffAGzEMZXkGrcAqBCp6RLBvv`F6e{#]HhD-~,*$
DDfeijJCtWHRpgyUAKcimGyAhNKhCliOO7O#GHH/WON\wX{NS_/:m-
DIWYgIaJbuXHspmbGsLSYJaqtSAOl56G!O"CQ6CjW/4d"H2"(>?t'
hEXgNEWaafaBhsWrnlKAEobbaYiN"mJ3!jam(l{cX5S%bdho \7V
GGWIlgqIpYcEkjREHDePsaobHpFdA6orNSmOad^K=z!!g4;P,;s^h!
icVDVMcgavUxkayPmkURqfFsNYYzA7h<+LLusg$SZER9n4Um`q4\4%
RmYDfAZMCWIVsAvQjrlYYgLdlIJtpm^y|@_'-<_0@h}M2 >deJ9t$
NKtRvlHhsKUIIHFVxCfcuhSkcXVGP{oZEjWO@\+l3liTSsTd]_pa
SgbAZmpXnEVlYCDEWVvRPvCmrGmA)GXHLMfm!Bm:6d'-A`9b>E<@
nRYAjAoqemIPCquMmPtcVxFQyuOK=:jMrS0oC6vU;Vey0"vd-;xh#
gptbCwyqORWrPTpNXAkWnrfOjFzY/TO~AslDvMN:'vBe+J/oL)N,#
SystemSocketTasks
AssemblyTrademarkAttribute
AssemblyCopyrightAttribute
AssemblyProductAttribute
TargetFrameworkAttribute
System.Runtime.Versioning
AssemblyFileVersionAttribute
ComVisibleAttribute
AssemblyCompanyAttribute
DebuggableAttribute
System.Diagnostics
DebuggingModes
RuntimeCompatibilityAttribute
System.Runtime.CompilerServices
CompilationRelaxationsAttribute
AssemblyConfigurationAttribute
AssemblyDescriptionAttribute
AssemblyTitleAttribute
STAThreadAttribute
UInt32
GCHandleType
get_Target
LoadModule
ResolveSignature
AppDomain
get_CurrentDomain
ResolveEventHandler
add_AssemblyResolve
GetTypes
ResolveMethod
MethodBase
GetParameters
ParameterInfo
Invoke
RuntimeHelpers
InitializeArray
GetExecutingAssembly
get_ManifestModule
get_UTF8
get_Name
get_FullName
String
ToUpperInvariant
GetBytes
Convert
ToBase64String
GetEntryAssembly
GetManifestResourceStream
get_Length
Buffer
BlockCopy
ReadByte
op_Equality
asdasfsa
.NETFramework,Version=v4.0
FrameworkDisplayName
.NET Framework 4
1.0.0.0
WrapNonExceptionThrows
adasda
_CorExeMain
mscoree.dll
#'>g#'>
#'>T#'>
#'>{#'>
#'>N#'>
#'>$#'>
#'>N#'>
#'>v#'>
#'>N#'>
#'>Z#'>
#'>v#'>
#'>9#'>I#'>
#'>5#'>
#&>-#'>
#'>E#'>
#'>C#'>
#'>X#'>
$9C #8
#'>@#'>
).I *0K
"%;\"7
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<requestedExecutionLevel level="asInvoker" uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
-GROWTH_BUSINESS_INVESTMENT_PROFIT_ICON_188792(
VS_VERSION_INFO
StringFileInfo
000004B0
Comments
sdfgsdfsd
CompanyName
FileDescription
sdfgsdfsd
FileVersion
1.0.0.2
InternalName
LegalCopyright
LegalTrademarks
OriginalFilename
ProductName
ProductVersion
1.0.0.2
Assembly Version
1.0.0.2
VarFileInfo
Translation
Antivirus Signature
Bkav W32.ZokeesaLH.Trojan
Lionic Trojan.MSIL.ClipBanker.7!c
Elastic malicious (high confidence)
ClamAV Clean
CMC Clean
CAT-QuickHeal Clean
ALYac Trojan.GenericKD.37105241
Cylance Unsafe
VIPRE Trojan.GenericKD.37105241
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Trojan ( 005733031 )
BitDefender Trojan.GenericKD.37105241
K7GW Trojan ( 005733031 )
Cybereason malicious.c761bd
Baidu Clean
VirIT Clean
Cyren W32/MSIL_Kryptik.DVF.gen!Eldorado
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 a variant of MSIL/GenKryptik.EWGN
APEX Malicious
Paloalto Clean
Cynet Malicious (score: 100)
Kaspersky Trojan-Banker.MSIL.ClipBanker.qc
Alibaba TrojanBanker:MSIL/ClipBanker.3c361f40
NANO-Antivirus Clean
SUPERAntiSpyware Clean
MicroWorld-eScan Trojan.GenericKD.37105241
Rising Malware.Obfus/MSIL@AI.100 (RDM.MSIL2:de5l72uvh7CmQzA8L6L3VQ)
Ad-Aware Trojan.GenericKD.37105241
Sophos Mal/Generic-S
Comodo Malware@#21fhsdxkwfchq
F-Secure Clean
DrWeb Trojan.Siggen13.57339
Zillya Trojan.ClipBanker.Win32.10638
TrendMicro TROJ_GEN.R002C0PIK22
McAfee-GW-Edition BehavesLike.Win32.Generic.ch
Trapmine malicious.high.ml.score
FireEye Generic.mg.ed59308f9e2b59ec
Emsisoft Trojan.Agent (A)
Ikarus Trojan-Spy.MSIL.Agent
Jiangmin Clean
Webroot Clean
Avira HEUR/AGEN.1248319
MAX malware (ai score=85)
Antiy-AVL Trojan[Banker]/MSIL.ClipBanker
Kingsoft Win32.Troj.Generic_a.a.(kcloud)
Microsoft Program:Win32/Multiverze
Gridinsoft Trojan.Win32.Banker.oa!s1
Arcabit Trojan.Generic.D2362E59
ViRobot Trojan.Win32.S.Agent.163328.FB
ZoneAlarm Clean
GData Trojan.GenericKD.37105241
Google Detected
AhnLab-V3 Trojan/Win.Generic.C4527825
Acronis suspicious
McAfee Packed-GDY!ED59308F9E2B
TACHYON Clean
VBA32 CIL.HeapOverride.Heur
Malwarebytes MachineLearning/Anomalous.96%
Panda Trj/GdSda.A
Zoner Clean
TrendMicro-HouseCall TROJ_GEN.R002C0PIK22
Tencent Msil.Trojan-Banker.Clipbanker.Gkjl
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.1728101.susgen
Fortinet MSIL/Confuser.DY!tr
BitDefenderTheta Gen:NN.ZemsilF.36158.jm0@aOOIHyg
AVG Win32:PWSX-gen [Trj]
Avast Win32:PWSX-gen [Trj]
CrowdStrike win/malicious_confidence_100% (W)
No IRMA results available.