Summary | ZeroBOX

msedge.exe

Generic Malware Malicious Library UPX Malicious Packer Anti_VM PE64 PE File
Category Machine Started Completed
FILE s1_win7_x6401 Aug. 31, 2023, 11:17 a.m. Aug. 31, 2023, 11:19 a.m.
Size 20.4MB
Type PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5 19d6340743164342171504547933597f
SHA256 8317da7d78f1ab5e517e5914fbdbbe20e079f71184279518dec1916271fcaea6
CRC32 A3F4C8D1
ssdeep 49152:27lgxQOjdfrB1VWuuJIwBXUVjDmXsScw2WEfykvNdM0a4J3C4ffysofoEIE1xL5C:2qfG+DPS1SQ0VEL7fTbdEwamHh
Yara
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • anti_vm_detect - Possibly employs anti-virtualization techniques
  • Malicious_Packer_Zero - Malicious Packer
  • Generic_Malware_Zero - Generic Malware

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Bkav W32.AIDetectMalware.64
Ikarus Trojan.Win64.Agent
Time & API Arguments Status Return Repeated

LdrGetProcedureAddress

ordinal: 0
function_address: 0x000007fefd6b7a50
function_name: wine_get_version
module: ntdll
module_address: 0x0000000076d30000
-1073741511 0