popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

dc.exe

Emotet Gen1 Generic Malware UPX Malicious Library Malicious Packer Admin Tool (Sysinternals etc ...) Anti_VM PE64 PE File OS Processor Check ZIP Format DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 June 19, 2023, 5:06 p.m. June 19, 2023, 5:09 p.m.
Size 12.6MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 a1dc3e2f998031a7c96685e6571f4f5f
SHA256 f1f178feb065f7deedf19c4d29428eefb0632acdf4568e48e0067b466f77d15c
CRC32 63F843C0
ssdeep 196608:SjUOMYe3o5AeNp93S3IdQmRJ8dA6l10sKYu/PaQ8IkaqdVTLDuwY6f5nJbOnzzg:y6YPh8IdQusl7Q8IwdF5nJQXg
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • Malicious_Library_Zero - Malicious_Library
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

GlobalMemoryStatusEx

 1 1 0
section _RDATA
file C:\Users\test22\AppData\Local\Temp\_MEI25522\mfc140u.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\VCRUNTIME140_1.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\python3.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\VCRUNTIME140.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\libffi-7.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\libssl-1_1.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\pywin32_system32\pywintypes310.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\pywin32_system32\pythoncom310.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\python310.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25522\libcrypto-1_1.dll
Lionic Trojan.Win32.Scar.4!c
MicroWorld-eScan Trojan.Generic.33714818
ALYac Trojan.Generic.33714818
VIPRE Trojan.Generic.33714818
K7AntiVirus Trojan ( 0059c5741 )
Alibaba Trojan:Win32/ClipBanker.d66114c6
K7GW Trojan ( 0059c5741 )
Arcabit Trojan.Generic.D2027282
Symantec Trojan.Gen.MBT
ESET-NOD32 Python/ClipBanker.DE
APEX Malicious
Cynet Malicious (score: 100)
Kaspersky Trojan.Win32.Scar.tpge
BitDefender Trojan.Generic.33714818
Avast FileRepMalware [Misc]
Emsisoft Trojan.Generic.33714818 (B)
F-Secure Trojan.TR/ClipBanker.munvo
TrendMicro TROJ_GEN.R002C0XER23
McAfee-GW-Edition BehavesLike.Win64.Agent.rc
FireEye Trojan.Generic.33714818
Sophos Mal/Generic-S
Jiangmin Trojan.PSW.Python.iv
Avira TR/ClipBanker.munvo
MAX malware (ai score=89)
Microsoft Trojan:Win32/Wacatac.B!ml
ZoneAlarm Trojan.Win32.Scar.tpge
GData Trojan.Generic.33714818
McAfee Artemis!A1DC3E2F9980
Cylance unsafe
Panda Trj/Chgt.AD
TrendMicro-HouseCall TROJ_GEN.R002C0XER23
Tencent Win32.Trojan.Scar.Jcnw
MaxSecure Trojan.Malware.208708743.susgen
Fortinet Malicious_Behavior.SB
AVG FileRepMalware [Misc]
DeepInstinct MALICIOUS
CrowdStrike win/malicious_confidence_100% (W)