popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2053-06-23 15:12:55

PDB Path

C:\Users\PUSHKIN\Desktop\LfhxrETRRGxerZerexgfCtex\LfhxrETRRGxerZerexgfCtex\obj\Debug\LfhxrETRRGxerZerexgfCtex.pdb

PE Imphash

f34d5f2d4577ed6d9ceec516c1f5a744

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x00042b34 0x00042c00 7.95586277913
.rsrc 0x00046000 0x00001778 0x00001800 2.89189972725
.reloc 0x00048000 0x0000000c 0x00000200 0.101910425663

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x00046100 0x000010a8 LANG_NEUTRAL SUBLANG_NEUTRAL dBase IV DBT of @.DBF, block length 4096, next free block index 40, next free block 100663296, next used block 0
RT_GROUP_ICON 0x000471b8 0x00000014 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_VERSION 0x000471dc 0x0000039c LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MANIFEST 0x00047588 0x000001ea LANG_NEUTRAL SUBLANG_NEUTRAL XML 1.0 document, UTF-8 Unicode (with BOM) text, with CRLF line terminators

Imports

Library mscoree.dll:
0x402000 _CorExeMain
!This program cannot be run in DOS mode.
`.rsrc
@.reloc
y!sa
xOsa
xOsa
  s^
d2sa
((s^
d`sa
dsa
hZsa
v4.0.30319
#Strings
ThreadSafeObjectProvider`1
get_ColorDialog1
set_ColorDialog1
get_FontDialog1
set_FontDialog1
get_Label1
set_Label1
get_LinkLabel1
set_LinkLabel1
get_Panel1
set_Panel1
m_Form1
get_Form1
set_Form1
get_Button1
set_Button1
get_TrackBar1
set_TrackBar1
get_VScrollBar1
set_VScrollBar1
get_Timer1
set_Timer1
get_ImageList1
set_ImageList1
get_PictureBox1
set_PictureBox1
get_CheckBox1
set_CheckBox1
get_ComboBox1
set_ComboBox1
get_GroupBox1
set_GroupBox1
get_ListBox1
set_ListBox1
get_TextBox1
set_TextBox1
get_RichTextBox1
set_RichTextBox1
get_ListBox2
set_ListBox2
MOANMZAAAAAAAR555
<Module>
CASLLLLLLL
get_RIAM
System.IO
get_MIAXS
Dispose__Instance__
Create__Instance__
locaaaaa
ProjectData
mscorlib
Microsoft.VisualBasic
Thread
Form1_Load
add_Load
set_Enabled
set_FormattingEnabled
get_IsDisposed
m_FormBeingCreated
Synchronized
Second
Replace
set_IsSingleInstance
CreateInstance
get_GetInstance
defaultInstance
instance
GetHashCode
set_Mode
set_AutoScaleMode
AuthenticationMode
ShutdownMode
CipherMode
get_BigEndianUnicode
get_Message
IDisposable
Hashtable
RuntimeTypeHandle
GetTypeFromHandle
set_ShutdownStyle
set_Name
Combine
CheckForSyncLockOnValueType
CallType
GetType
VariantType
System.Core
get_Culture
set_Culture
resourceCulture
WindowsFormsApplicationBase
ButtonBase
ApplicationSettingsBase
Dispose
StrReverse
DebuggerBrowsableState
EditorBrowsableState
ThreadStaticAttribute
STAThreadAttribute
CompilerGeneratedAttribute
DesignerGeneratedAttribute
GuidAttribute
HelpKeywordAttribute
GeneratedCodeAttribute
DebuggerNonUserCodeAttribute
NeutralResourcesLanguageAttribute
DebuggableAttribute
DebuggerBrowsableAttribute
EditorBrowsableAttribute
ComVisibleAttribute
AssemblyTitleAttribute
StandardModuleAttribute
HideModuleNameAttribute
DebuggerStepThroughAttribute
AssemblyTrademarkAttribute
TargetFrameworkAttribute
DebuggerHiddenAttribute
AssemblyFileVersionAttribute
MyGroupCollectionAttribute
AssemblyDescriptionAttribute
CompilationRelaxationsAttribute
AssemblyProductAttribute
AssemblyCopyrightAttribute
AssemblyCompanyAttribute
RuntimeCompatibilityAttribute
AccessedThroughPropertyAttribute
m_ThreadStaticValue
WithEventsValue
GetObjectValue
Remove
LfhxrETRRGxerZerexgfCtex.exe
set_Size
set_ImageSize
set_AutoSize
set_ClientSize
ISupportInitialize
System.Threading
NewLateBinding
Encoding
System.Runtime.Versioning
get_UseCompatibleTextRendering
GetResourceString
ToString
disposing
System.Drawing
ColorDialog
FontDialog
ComputeHash
set_ColorDepth
Timer1_Tick
add_Tick
remove_Tick
TransformFinalBlock
LinkLabel
System.ComponentModel
ContainerControl
ListControl
ObjectFlowControl
System
SymmetricAlgorithm
HashAlgorithm
set_MainForm
OnCreateMainForm
ICryptoTransform
resourceMan
System.ComponentModel.Design
AppDomain
get_CurrentDomain
Multiplication
get_Application
MyApplication
set_Location
System.Configuration
System.Globalization
Interaction
System.Reflection
ControlCollection
TargetInvocationException
InvalidOperationException
get_InnerException
ArgumentException
Button
add_Shutdown
CultureInfo
set_TabStop
TrackBar
VScrollBar
set_ShowInTaskbar
InvokeMember
SHA256CryptoServiceProvider
DESCryptoServiceProvider
m_AppObjectProvider
m_UserObjectProvider
m_ComputerObjectProvider
m_MyWebServicesObjectProvider
m_MyFormsObjectProvider
sender
Binder
get_ResourceManager
ToInteger
addedHandler
ShutdownEventHandler
System.CodeDom.Compiler
IContainer
get_User
get_Computer
MyComputer
set_UseVisualStyleBackColor
set_TransparentColor
SetProjectError
Activator
.cctor
Monitor
CreateDecryptor
System.Diagnostics
Microsoft.VisualBasic.Devices
get_WebServices
MyWebServices
Microsoft.VisualBasic.ApplicationServices
System.Runtime.InteropServices
Microsoft.VisualBasic.CompilerServices
System.Runtime.CompilerServices
System.Resources
LfhxrETRRGxerZerexgfCtex.My.Resources
LfhxrETRRGxerZerexgfCtex.Form1.resources
LfhxrETRRGxerZerexgfCtex.Resources.resources
DebuggingModes
set_EnableVisualStyles
GetBytes
BindingFlags
Strings
get_Settings
AutoSaveSettings
MySettings
EventArgs
ReferenceEquals
get_Controls
System.Windows.Forms
get_Forms
MyForms
set_AutoScaleDimensions
Conversions
System.Collections
RuntimeHelpers
components
Subtract
addedHandlerLockObject
GetObject
MyProject
LateIndexGet
set_ItemHeight
EndInit
BeginInit
get_SaveMySettingsOnExit
set_SaveMySettingsOnExit
get_Default
SetCompatibleTextRenderingDefault
RuntimeEnvironment
InitializeComponent
get_Transparent
ImageList
SuspendLayout
ResumeLayout
PerformLayout
System.Text
set_Text
set_TabIndex
LfhxrETRRGxerZerexgfCtex
PictureBox
CheckBox
ComboBox
GroupBox
ListBox
RichTextBox
LfhxrETRRGxerZerexgfCtex.My
set_Key
ContainsKey
System.Security.Cryptography
get_Assembly
GetExecutingAssembly
GetRuntimeDirectory
MySettingsProperty
=N=N=N
pg=N=N
WrapNonExceptionThrows
LfhxrETRRGxerZerexgfCtex
Copyright
2023
$c9b0ae04-8402-4662-92a8-02990d68feb7
1.0.0.0
.NETFramework,Version=v4.0
FrameworkDisplayName
.NET Framework 4
Button1
CheckBox1
ColorDialog1
ComboBox1
GroupBox1
FontDialog1
ImageList1
Label1
LinkLabel1
ListBox1
ListBox2
PictureBox1
Panel1
VScrollBar1
TrackBar1
TextBox1
RichTextBox1
Timer1
MyTemplate
11.0.0.0
3System.Resources.Tools.StronglyTypedResourceBuilder
16.0.0.0
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
11.0.0.0
System.Windows.Forms.Form
Create__Instance__
Dispose__Instance__
My.MyProject.Forms
4System.Web.Services.Protocols.SoapHttpClientProtocol
Create__Instance__
Dispose__Instance__
My.Computer
My.Application
My.User
My.Forms
My.WebServices
My.Settings
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
rL"[{yk
o8Tr8w
4Q?\?D
XK<Mbg=
~WWWK2
G:;g^rn
Y7{y8~
PPy)0
"~QGShO
bk+v]T)
bk+v]T)
bk+v]T)
gt"(Kl
^sUlMah
henO|uh
[BE!7.
r mw{m
,~I;#W
<?oug1
oN_?Ff
.ra`.r3
0OLTfr
+c??+p
[#M&j$7
8Cf;pH
zNe%&V
+[2B?
h`K~'hn
u/EOIM
$S;*io
^/l!a
!?,X9lR:
v:zl,>N
;UBIPc
bk+v]T
p*%z,sqr
j6i2w7
d e9>
T%gdjaEC
Ph7Tyq
YBV~G,U
b{2$DP
bk+v]TNt
KpAJ]$v
}H`4`Z?A
ua_R4
%?M_ATJ
A~$;"UJ
5`x6("
( N#sW
pFqhoQ}
~tR60qF
yOQ4aU)#
`E((Ob
bk+v]T
eg%i5^G
j>h 8r^
@&|,So4`G
1a:8'p
l\jb{=k
OesvRK
AGacj?
*^hf7j
#Co8^M
3v3?*w
0Z<V|PT
oB4lE:
bk+v]Tr
bk+v]T
C /j1
YT0Y#F
> ??+p
|dwPB5
@Kfr@,q
>&a`jj'
nfvOo-0
bk+v]T
Uc78. q
ReA)~w
pCNV{m
r))LzyE
mP|weF
+%LA?>
~DSt&W
5l?qeO
H+rmc(
F/029Y6
LOs$H.n
M)>q#(
;Z'd/
17i;`\
&ktNIO
'"!6f1'
JQ|5U4A
nAU>bp
:;+w#R
[-gWa}
D$t80jG
bk+v]T
$S;*io
$S;*io
bk+v]Tq
$S;*iX
q)a)]~?
tb[w7N_f
LOvbn/zw
Q{$Zln
06T]ki
!QiCUj
bk+v]T
bk+v]T
V~ ]"u
KMnOmcI%+
H0<s&X
~tEZ`o
1@`?eM
Ns''Zh
M_-c8V
)&u|8b_
Q1R}.:
T\}oJg2pf
AT<) F$
(*#^$bc
rlon^q
rlon^q
To'h1C
.s0EtZO_^
,Z<Y]l
yHy%`K
=^Z?#H
7i6u[-
rq'x*L
$7H=~^
`W}Q[*
?,gSx0
tNGN*j
i4m'#.
gLk%[I
2TX=v'
<,d<RB
]ieqw&
yzWM(r
"~QGShO
|?;N#u>-
dU#(/g
>q|i-S
!%AN0
BDxu`:
!%AN0
BDxu`:
r mw{m
El}lna
"+U7M{2
;9XQI=
A\:R_7
|H@:lFC
Nir(g=
$"gx>y
b_l_`
mpkE`\SCQ3f
Vc/9g_\fT=
mkaMA6
O\5Ax'
lfgxg6U
010pOl
!m\;sd.
${CzxY
v#Du8r
Xv~BG9
g3Gfn~
MF,3Lu
mkaMA6
fcY0=$
vU+H"7
ugNCr/
DhN6^5U
:I,5n+
l+"|_8
PUHwvU+H"7
(wL5Wt
.EQ~p1>
-]>5q,
VeS+)F
@:d(su
9YAWx_
4V@J.6
!7T+Oj
{UbKEEI
lO,N4E
31QRV:
<]9dyU
FbZIgf
zz5.}s"
x5M"e2
*M)%'D
)aNK}:%
wk` m7f
8!u<Y+!
1vqpk3
B%+-(d[
.nSHltW
z<C~\`H
O3NL]9
#+)7U
tB.S!$+
Y\dud:
U8OcN`|o
/jt77Y:
pzXwNBc
9Lv&=,q
)ND-oP
RQND-oP
{`'g2Y
"bzL&S@
8zM9`d
Q80wyy
f=]&6p
P^P+Gi
Hgjj%+_W0
)IQ")z
r!PK.8
p:45:w
vj9D[l
3KXes7W
oJO(s`
V-b93$h
J[~Glo3
UN,-sy
N!jfw
le;"7b
iC(vy#
;-,(6P
v$CAkk
`B;7J~
At57wJf
%(x$dM
J{,k0F
rCTg65
PHz/`Z
OtrQ+%
+}8CU[
MKzhB@
?P,dqU
/M~02J
{$",mDP"3
!`~1z)C
.cP.J#
dgu~X[
Ypr2|b
[3|C5
wLP2.h
n"F:I^z
}>H[\1
U2O3D;
YF4*_f
o=AF>YF
.iZf=j
p<hx&^
\\xR'8z
:bA}/@
"*Q~?G
Wtc?8m/k
t/3.iT"
q;o$;y2BoQ
E@=h@!
Wi"(L[
af#0hE
?!80[0+
KRlitk
<=V$BO}L
b@MmSS
6O"1K&)
aKd>UOc
6Nz1RQ
9oS&&3
^jH`4'=
lg?PMNb
^96(}T
=w~`t
VI),A,
H%St)r
J)I-\!
@{bl|_
<[XVjc1
w#waup<_
A@k])blK
ej1\YhQ
rws(Km
w>e-h
gDKc"n
9u:9^"
2K^3bkR
<,x>MtM
><&5l
@8^=a6
V(2:E8
MQ_V7{\
I~HT?
]6RBaQ
=h4a%B
/+wCRY?
jgMzoV
;l^!u!X:XY
>3L7I34
)s9g?n
+~Ijo4Mr9
,wru\~
gto]qz
E}3RcDsf
(TYmEC}
WEzi@O
y,Zxz
v2?%Lp
pggk.B,
H:>f0MuZA
*`Z>2.a
5+1nQ
mqU.Rq
&`/^G(
Rz]P
6XBN6h
Fx_1>c
$qo&J9{
sj%Vd}
suV*][
#<jZtu
D~@zE_
tKL3z8
.-Y*
/?z|?=
nJ!Ov@x
8FizU'
_o(jwzQ
8<`'5H
i=|{L2
h%Ewo!
g\9cO!
:hz>6c
kQ|J^r
'4JQAj
'"9#sI
Fx'a0V
:F]Yh.
'c0RdA
(uPK-i*
MfCKMNX
POKS+
)jC5./=i/r
oX9<(]O
Q!s]'d
U5V_P(
sS^iiQ
i(dVKH
|Xa#d#64
3^dE@odO
~"36f/
,[hZD4
.WZr)(
s(sA@
[fQrWEe%%
E;Zgwq9
HMC6JX
>x]9 <'
Dxf(CO\$+
c{i?0u
9j?hg+
z8739z^
l#O^$E
<[~Y(Fo3
)7H^DA
}k=D4B(
JlS5b;8
m7n)2K
Z<hZ>U
x9e#("z
%=9H7M><fC
pPe$,3
Y'Zl|i
0ZQmqw
AG`8r_
\'GJKE
\'GJKE
\&#)qi
\xxq8Zn
3#xX)C
r>^ebB
r~aE$x
o4NWu9
:IucW%s
90v;&9K
=O|9uw
9kX7w:
cSVvmo
jo{%,^w
Z+w|f
.0xQa%
[1xB:@
HK"EG~
lKRJK1
Xa|\YG
$SnEbF
/&3c@D
#gA"<t
ZA?h9_!
C:\Users\PUSHKIN\Desktop\LfhxrETRRGxerZerexgfCtex\LfhxrETRRGxerZerexgfCtex\obj\Debug\LfhxrETRRGxerZerexgfCtex.pdb
_CorExeMain
mscoree.dll
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<requestedExecutionLevel level="asInvoker" uiAccess="false"/>
</requestedPrivileges>
</security>
</trustInfo>
</assembly>
N?X_fmt
LfhxrETRRGxerZerexgfCtex.Resources
Button1
CheckBox1
ComboBox1
GroupBox1
Label1
LinkLabel1
ListBox1
ListBox2
PictureBox1
Panel1
RichTextBox1
TextBox1
TrackBar1
VScrollBar1
WinForms_RecursiveFormCreate
WinForms_SeeInnerException
Property can only be set to Nothing
RegAsm.exe
XZZXZXZX
2000 Min
CalXXXXXXXXXXXXXXXXXName
XXXXXXXXXXXXXXXXX
maNyBll
Nam4444e
GetLOAD
dohteM
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
Comments
CompanyName
FileDescription
LfhxrETRRGxerZerexgfCtex
FileVersion
1.0.0.0
InternalName
LfhxrETRRGxerZerexgfCtex.exe
LegalCopyright
Copyright
2023
LegalTrademarks
OriginalFilename
LfhxrETRRGxerZerexgfCtex.exe
ProductName
LfhxrETRRGxerZerexgfCtex
ProductVersion
1.0.0.0
Assembly Version
1.0.0.0
Antivirus Signature
Bkav W32.AIDetectNet.01
Lionic Trojan.Win32.Agensla.4!c
Elastic malicious (moderate confidence)
MicroWorld-eScan Trojan.GenericKD.66357122
ClamAV Clean
FireEye Trojan.GenericKD.66357122
CAT-QuickHeal Clean
McAfee Artemis!637E34963841
Malwarebytes Malware.AI.2488206300
Zillya Clean
Sangfor Trojan.Win32.Save.a
K7AntiVirus Clean
BitDefender Trojan.GenericKD.66357122
K7GW Clean
CrowdStrike win/malicious_confidence_100% (W)
BitDefenderTheta Gen:NN.ZemsilCO.36132.rm0@aqxcnPd
VirIT Clean
Cyren W32/ABRisk.WIXF-6932
Symantec ML.Attribute.HighConfidence
tehtris Clean
ESET-NOD32 a variant of MSIL/Kryptik.AHIX
APEX Malicious
Paloalto generic.ml
Cynet Malicious (score: 100)
Kaspersky HEUR:Trojan-PSW.MSIL.Agensla.gen
Alibaba Trojan:MSIL/Kryptik.d5336056
NANO-Antivirus Clean
ViRobot Clean
Rising Malware.Obfus/MSIL@AI.96 (RDM.MSIL2:GSOwhdTzbQRTaxNSOTzeLw)
TACHYON Clean
Sophos Mal/Generic-S
Baidu Clean
F-Secure Trojan.TR/Dropper.MSIL.Gen8
DrWeb Trojan.PWS.Siggen3.29377
VIPRE Clean
TrendMicro Clean
McAfee-GW-Edition Artemis!Trojan
Trapmine Clean
CMC Clean
Emsisoft Trojan.GenericKD.66357122 (B)
Ikarus Trojan.MSIL.Crypt
GData Win32.Trojan-Stealer.MailPSW.IUX0GE@gen
Jiangmin Clean
Webroot W32.Trojan.Gen
Avira TR/Dropper.MSIL.Gen8
Antiy-AVL Trojan/MSIL.Kryptik
Gridinsoft Trojan.Win32.Kryptik.cl
Xcitium Clean
Arcabit Clean
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan-PSW.MSIL.Agensla.gen
Microsoft Trojan:Win32/Casdet!rfn
Google Detected
AhnLab-V3 Clean
Acronis suspicious
VBA32 Clean
ALYac Clean
MAX malware (ai score=86)
DeepInstinct MALICIOUS
Cylance unsafe
Panda Clean
Zoner Clean
TrendMicro-HouseCall TROJ_GEN.R002H0DDB23
Tencent Msil.Trojan.Dropper.Mgil
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Clean
Fortinet MSIL/Kryptik.AIEJ!tr
AVG Win32:CrypterX-gen [Trj]
Avast Win32:CrypterX-gen [Trj]
No IRMA results available.