popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

qqsrv.exe

UPX Malicious Library Malicious Packer PE File OS Processor Check PE32
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 June 22, 2023, 10:31 a.m. June 22, 2023, 10:37 a.m.
Size 118.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 f1bf04ac46c4a9fd55f902d495461147
SHA256 bc06890c2b7992e31726f069dfbb6f1fda24601a7538244d44783c5a323d965a
CRC32 68076D94
ssdeep 3072:/O0mln1RvntAOEiKLvBN1g4sZsGR6pst3:G3nrqRvBQRt3
Yara
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check
  • PE_Header_Zero - PE File Signature
  • Malicious_Library_Zero - Malicious_Library
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .gfids
resource name AFX_DIALOG_LAYOUT
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.ClipBanker.Z!c
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.67448049
FireEye Generic.mg.f1bf04ac46c4a9fd
McAfee Artemis!F1BF04AC46C4
Malwarebytes Trojan.ClipBanker
Sangfor Trojan.Win32.Kryptik.Vgs6
K7AntiVirus Trojan ( 005a6cb61 )
Alibaba Trojan:Win32/BypassUAC.ebf75448
K7GW Trojan ( 005a6cb61 )
Arcabit Trojan.Generic.D4052CF1
Cyren W32/ABRisk.OTCN-4673
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Kryptik_AGen.BKW
Cynet Malicious (score: 100)
APEX Malicious
Kaspersky HEUR:Trojan.Win32.BypassUAC.gen
BitDefender Trojan.GenericKD.67448049
Avast Win32:Trojan-gen
Tencent Malware.Win32.Gencirc.13cddc45
Emsisoft Trojan.GenericKD.67448049 (B)
F-Secure Heuristic.HEUR/AGEN.1318721
VIPRE Trojan.GenericKD.67448049
TrendMicro TrojanSpy.Win32.TMLOADER.YXDFIZ
McAfee-GW-Edition BehavesLike.Win32.Dropper.ch
Sophos Mal/Generic-S
Avira HEUR/AGEN.1318721
MAX malware (ai score=86)
Antiy-AVL Trojan/Win32.Kryptik
Gridinsoft Ransom.Win32.Sabsik.cl
Microsoft Trojan:Win32/Malgent!MSR
ZoneAlarm HEUR:Trojan.Win32.BypassUAC.gen
GData Trojan.GenericKD.67448049
Google Detected
BitDefenderTheta Gen:NN.ZexaF.36250.hCW@aqQ593li
ALYac Trojan.GenericKD.67448049
VBA32 BScope.Exploit.UAC
Cylance unsafe
Panda Trj/Chgt.AD
TrendMicro-HouseCall TrojanSpy.Win32.TMLOADER.YXDFIZ
Rising Trojan.Generic@AI.100 (RDML:eXtWfiLpw2WVNvZ1OPg8zw)
Ikarus Trojan.Win32.Crypt
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/Kryptik_AGen.BKW!tr
AVG Win32:Trojan-gen
DeepInstinct MALICIOUS
CrowdStrike win/malicious_confidence_100% (W)