popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2023-06-15 22:23:04

PE Imphash

5a1d35404fe0acce8936f67cc51ec4fe

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000161c 0x00002000 3.95789821159
.data 0x00003000 0x00000a44 0x00001000 0.0
.rsrc 0x00004000 0x00000894 0x00001000 1.8846024337

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x00004354 0x00000128 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00004354 0x00000128 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00004354 0x00000128 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_GROUP_ICON 0x00004324 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_VERSION 0x00004150 0x000001d4 LANG_ENGLISH SUBLANG_ENGLISH_US data

Imports

Library MSVBVM60.DLL:
0x401000 _CIcos
0x401004 _adj_fptan
0x401008 __vbaFreeVar
0x40100c __vbaLenBstr
0x401010 __vbaEnd
0x401014 _adj_fdiv_m64
0x401018 _adj_fprem1
0x40101c __vbaStrCat
0x401024 _adj_fdiv_m32
0x401028 __vbaLateMemSt
0x40102c _adj_fdiv_m16i
0x401030 __vbaObjSetAddref
0x401034 _adj_fdivr_m16i
0x401038 _CIsin
0x40103c None
0x401040 __vbaChkstk
0x401044 EVENT_SINK_AddRef
0x401048 __vbaObjVar
0x40104c _adj_fpatan
0x401050 EVENT_SINK_Release
0x401054 None
0x401058 _CIsqrt
0x401060 __vbaExceptHandler
0x401064 _adj_fprem
0x401068 _adj_fdivr_m64
0x40106c None
0x401070 __vbaFPException
0x401074 None
0x401078 _CIlog
0x40107c __vbaErrorOverflow
0x401080 _adj_fdiv_m32i
0x401084 _adj_fdivr_m32i
0x401088 __vbaStrCopy
0x40108c __vbaFreeStrList
0x401090 _adj_fdivr_m32
0x401094 _adj_fdiv_r
0x401098 None
0x40109c __vbaLateMemCall
0x4010a0 __vbaFpI4
0x4010a4 __vbaLateMemCallLd
0x4010a8 _CIatan
0x4010ac __vbaStrMove
0x4010b0 _allmul
0x4010b4 _CItan
0x4010b8 _CIexp
0x4010bc __vbaFreeStr
0x4010c0 __vbaFreeObj
0x4010c4 None
!This program cannot be run in DOS mode.
`.data
MSVBVM60.DLL
Project1
MDIForm1
MDIForm1
MDIForm1
Project1
Project1
Project1
Module1
MDIForm1
VBA6.DLL
__vbaErrorOverflow
__vbaFreeStrList
__vbaFpI4
__vbaStrCat
__vbaLenBstr
__vbaStrCopy
__vbaFreeObj
__vbaLateMemCallLd
__vbaLateMemSt
__vbaLateMemCall
__vbaFreeVar
__vbaFreeStr
__vbaObjVar
__vbaObjSetAddref
__vbaStrMove
MDIForm
C:\Program Files (x86)\Microsoft Visual Studio\VB98\VB6.OLB
__vbaEnd
__vbaHresultCheckObj
MSVBVM60.DLL
_CIcos
_adj_fptan
__vbaFreeVar
__vbaLenBstr
__vbaEnd
_adj_fdiv_m64
_adj_fprem1
__vbaStrCat
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaLateMemSt
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
_CIsin
__vbaChkstk
EVENT_SINK_AddRef
__vbaObjVar
_adj_fpatan
EVENT_SINK_Release
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
_CIlog
__vbaErrorOverflow
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
__vbaLateMemCall
__vbaFpI4
__vbaLateMemCallLd
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeStr
__vbaFreeObj
@*\AC:\Users\ivan_\Desktop\run file remote\Project1.vbp
687474703A2F2F35312E37392E34392E37332F6372632F67616D65312E657865
433A5C55736572735C5075626C69635C566964656F735C67616D65312E657865
4D53584D4C322E584D4C48545450
41444F44422E53747265616D
474554
responseBody
SaveToFile
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
040904B0
ProductName
Project1
FileVersion
ProductVersion
InternalName
OriginalFilename
game2.exe
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Clean
Elastic Clean
DrWeb Clean
MicroWorld-eScan Gen:Variant.Tedy.380556
FireEye Gen:Variant.Tedy.380556
CAT-QuickHeal Clean
ALYac Gen:Variant.Tedy.380556
Malwarebytes Clean
VIPRE Gen:Variant.Tedy.380556
Sangfor Clean
K7AntiVirus Clean
BitDefender Gen:Variant.Tedy.380556
K7GW Clean
CrowdStrike Clean
Arcabit Trojan.Tedy.D5CE8C
BitDefenderTheta Gen:NN.ZevbaCO.36250.bm0@aS3oWghi
VirIT Clean
Cyren Clean
Symantec Clean
tehtris Clean
ESET-NOD32 Clean
APEX Malicious
Paloalto Clean
ClamAV Clean
Kaspersky UDS:DangerousObject.Multi.Generic
Alibaba Clean
NANO-Antivirus Clean
ViRobot Clean
Rising HackTool.VBInject!1.6481 (CLASSIC)
Sophos Clean
F-Secure Clean
Baidu Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition BehavesLike.Win32.PUP.mz
Trapmine malicious.high.ml.score
CMC Clean
Emsisoft Gen:Variant.Tedy.380556 (B)
Ikarus Clean
Jiangmin Clean
Webroot Clean
Google Clean
Avira Clean
MAX malware (ai score=88)
Antiy-AVL Clean
Gridinsoft Clean
Xcitium TrojWare.Win32.Inject.ALCI@53390z
Microsoft Clean
SUPERAntiSpyware Clean
ZoneAlarm UDS:DangerousObject.Multi.Generic
GData Gen:Variant.Tedy.380556
Cynet Clean
AhnLab-V3 Clean
Acronis Clean
McAfee Artemis!AD0F1F3418DA
TACHYON Clean
DeepInstinct MALICIOUS
VBA32 Clean
Cylance unsafe
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Clean
Yandex Clean
SentinelOne Clean
MaxSecure Trojan.Malware.300983.susgen
Fortinet PossibleThreat.MU
AVG Clean
Cybereason Clean
Avast Clean
No IRMA results available.