popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2057-03-27 04:53:08

PE Imphash

f34d5f2d4577ed6d9ceec516c1f5a744

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x00022894 0x00022a00 4.33290564673
.rsrc 0x00026000 0x00000294 0x00000400 2.12212901207
.reloc 0x00028000 0x0000000c 0x00000200 0.101910425663

Resources

Name Offset Size Language Sub-language File type
RT_VERSION 0x00026058 0x0000023c LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library mscoree.dll:
0x402000 _CorExeMain
!This program cannot be run in DOS mode.
`.rsrc
@.reloc
lSystem.Resources.ResourceReader, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
PADPADP
v4.0.30319
#Strings
<CheckD>b__1_0
<Run>b__3_0
<SetText>b__0
<Run>b__3_1
IEnumerable`1
HashSet`1
List`1
Microsoft.Win32
ToInt32
<Run>b__3_2
Decrypt_Base64
get_IsWin64
<Module>
ePoXozhAbOQA
lONeaaCkTtjB
CdLXzUPwHxwvpB
aPCkhuOTOAC
thsgIqLgqPIcC
EdeSnizNtObQD
txRoUsCtEE
IDGVSoLHANE
tTuuGXuJwUazE
YilkdLTfeTDTjF
HGKGPCpIVeG
FUFjtkJapKbkjG
iTgFuTtDpWnG
kPGXfBwUXtqoCBH
GxRrrOlKKPhdH
cRorhVeMMCI
tDzdRQZDWI
QAUGOBPdiglZSbcI
NDkhXKGGdBsfI
zWWLrlyILQtFzMoI
PhuzNDNoaoirwoI
gzFKULepdvI
GEzXfHtatyRJ
bzhrfCPmasIeZJ
stOkswLgxAjJ
DmStDZdNZLsJ
IXWMfQMWDQvJ
hGiaZfytaK
XvmsNtuKIiRNL
jrehPHAYHwRL
ZaCCwzmmdviWL
uRdMfJeABnauQMM
qtXDxCbqySiN
hiJUVXbUnkN
mDZJWMGlRrLFREyN
System.IO
aUSFYvuCOO
OquJVJZvuyHAqgO
ljLUkysRAFiO
WcafGomlVFbFR
dCUeWxpmhJR
ITYQjTGRQGlXR
YLKlutEkBpR
kpfiTyGQPOjVT
XhmmjkOMXT
HRBbbQSqodGU
vLWrrGqbgFRU
LUSRmBWjAV
ZKfJsxdnsAtBV
gkgWbpzxZSWV
kahLKwqgfZuFW
inNSDQlJjNW
WssGTNXCcW
tqeMPgNcGBRcsX
sfBZPNdspNxX
fymTyXFZuLmY
RBYyRrjWhlrY
NBtTpnnTMfDmZ
uWDgeOppMCQepa
GetClipboardData
BQcukMkHPb
mscorlib
sYxaSPrDkb
dXwmllBocqDZsb
YRUyYMgZTNc
System.Collections.Generic
eZCRtwiZglc
afRcXuLzsDmc
WndProc
Thread
add_Load
aJVuUTQJPld
ClipperBuild
ReadToEnd
CloseClipboard
OpenClipboard
EmptyClipboard
IEuGkUEjVavnePe
set_AutoScaleMode
FileMode
CompressionMode
Message
IsClipboardFormatAvailable
Enumerable
IDisposable
get_Handle
WaitHandle
IsInRole
WindowsBuiltInRole
rgDuRrDiTdrle
get_MainModule
ProcessModule
set_WindowStyle
ProcessWindowStyle
set_Name
get_FileName
set_FileName
GetTempFileName
GetFileName
get_FullName
GetProcessesByName
DateTime
GetLastWriteTime
WriteLine
Combine
System.Core
Dispose
SetApartmentState
Delete
STAThreadAttribute
CompilerGeneratedAttribute
DebuggableAttribute
TargetFrameworkAttribute
CompilationRelaxationsAttribute
RuntimeCompatibilityAttribute
set_UseShellExecute
DeleteValue
SetValue
RegistryHive
set_ClientSize
JmMyjXInQKdf
QAiRNzFgxGeLnYeg
System.Threading
System.Runtime.Versioning
FromBase64String
ToString
System.Drawing
set_ErrorDialog
get_Msg
fJSWOeekBMMRh
KYaBCahcfYMah
IsMatch
hSwPdHcxTLgh
Refresh
get_ExecutablePath
GetTempPath
get_StartupPath
GetFolderPath
get_Length
HRlHRcuOYi
PtrToStringUni
iQmrpEcQAj
GlobalLock
GlobalUnlock
KiYDAylLYSglUrk
FuLuCabbtk
kHFobMPxIXfiRAl
ShGTUsPrCl
plGALuWcjaGLl
drZSsAMTsHKgSl
Marshal
System.Security.Principal
WindowsPrincipal
op_LessThanOrEqual
System.ComponentModel
DQRCzOpFeJyzFUfl
kernel32.dll
user32.dll
ContainerControl
FileStream
GZipStream
MemoryStream
get_Is64BitOperatingSystem
oZNleujUVbfm
Random
KXeVmicNGdGIn
ToBoolean
System.IO.Compression
Application
NotImplementedException
jPstBKINsn
vaGmQInwToAeo
LjGgRaYbjeo
FileInfo
FileSystemInfo
ProcessStartInfo
DirectoryInfo
vOACKRfCPWQSwo
ylotfKHcRBvwo
TUlgvBHEDQYp
PJhzusxWalq
System.Linq
FpwtKdrMTdwq
pLkDQKJQSKr
StreamReader
TextReader
SpecialFolder
EventHandler
AddClipboardFormatListener
IContainer
StreamWriter
TextWriter
DACzMXNxdmr
GetEnumerator
.cctor
JQiAtYxkcDBFqr
IntPtr
kDeGCjrKeVGs
SjAKgBNekvnNSLs
System.Diagnostics
System.Runtime.InteropServices
System.Runtime.CompilerServices
YLKlutEkBpR.XFaoRllbIzVZz.resources
DebuggingModes
AddMinutes
ReadAllBytes
NextBytes
EventArgs
qEKKfXLwmjs
Equals
System.Windows.Forms
Contains
set_AutoScaleDimensions
System.Text.RegularExpressions
get_Chars
GetCurrentProcess
set_Arguments
Exists
AddDays
wGIRkAukqeLt
Concat
Object
Environment
get_Current
GetCurrent
ThreadStart
Convert
ToList
SuspendLayout
ResumeLayout
set_RedirectStandardOutput
MoveNext
set_Text
ContainsText
SetText
rtAFojSjeLLJv
RegistryView
get_Now
set_CreateNoWindow
mmhNgnKXsw
EMecAaiDbvw
get_Today
OpenSubKey
OpenBaseKey
RegistryKey
mjZcqQTfMky
CreateDirectory
WindowsIdentity
dYGgOchhpyZEz
lbwqeIONUiz
gRTVrsoRaLutz
WrapNonExceptionThrows
.NETFramework,Version=v4.0
FrameworkDisplayName
.NET Framework 4
_CorExeMain
mscoree.dll
H4sIAAAAAAAEAEtKNixMK68yMUkuzU0uMU/LTjYrLystSC0xtczJsKwwsTAxrqgwK8yzMAMAkozwBioAAAA=
H4sIAAAAAAAEADP0qHT3Li1O9y2v9E2rDDPLCEs0dDev8q2wKHKOqnSN8sjQMXZJMnbNdvezCI9MKa7MCjIJyvUODYkoKSwqSk4yzqssdAYAcKajN0UAAAA=
H4sIAAAAAAAEAEvKLEnOz8xLTizOsCosMjIuKkkrMSvOMy6sLEk1tigxLk/NLS6qLC7MMivJykvPMagqKqwoKNTRAQCP3CSpOAAAAA==
H4sIAAAAAAAEAHPxrgrJTDdMzQz38/MKqigKDU80iggLccoILSkpd40MNDIDAGEgWxIiAAAA
H4sIAAAAAAAEAAXBAREAIAgDwEqA3MQ4ymYG4/tvz4ne2saoeTS0KHicuJZdY6kAzwt+E0K6kioAAAA=
H4sIAAAAAAAEAMspSTYsNE40ME0vqDIxS81IrzA1zU4xq0zJSE1Pzc0rTzcwLi5OySvIrkjV8QkscDQyN83PNQxxK0gy9/BLjMz2CfS1MDNzDfENSc8KjQIAyzfsQk4AAAA=
H4sIAAAAAAAEAAXB2w5AIAAA0G9y51ExRmvmPm+kNWtFMeLrneP6eEKQLvM9bwkDkIRHPbT5y4HTSRopbTGYsR0UzUdWxASOwrE8e3pycUHzSnxVz8HLwJ5MYDylq0WnDalVLrZsjcEPOMfYLl8AAAA=
H4sIAAAAAAAEAHN38gp3cvXydzEJczUKcfY1D/c3jvSINA1y9HJz9wz0CXMM8PCMdPQL9XAxcncPDjUJCjP2dHPxBwBrhgXQOAAAAA==
H4sIAAAAAAAEACsK8KhyLkkJM0rLSCr2SnNyy88oKkkyq/QNS45yCjZ2TzfV0QEABqGq7iQAAAA=
H4sIAAAAAAAEAHMMLfQIdnIpLA108XPMMHHKD0kPy830SjMO90k0TKyMDEgHAFfl3u4iAAAA
H4sIAAAAAAAEAIsoDshILLBwSwp3T04LiUpPTyss8gh1TXK2zLYMi0gq8/ABAEDwug8iAAAA
H4sIAAAAAAAEAAvxSyzMrwzxqEg1c8wIsfQtzU2rqDAtLTN1rHK1DEoO9jUGABqc8uQiAAAA
H4sIAAAAAAAEACsxDC9yyfdxczS3LA3JMM00Mkp1MS3JLQqsKDT1Mk5yNnSJBADjgPjGIwAAAA==
H4sIAAAAAAAEAEvKSzIsy8hIzjFKKy0vszTJNjJPKU7PTSs2SExJKzUryy0C8kyKLdPKAL+h9P8qAAAA
H4sIAAAAAAAEAAvPzEvJLy8GAAe8WiwHAAAA
H4sIAAAAAAAEAAvPzEvJLy9W8MgvLlEIKMpPTi0uzi8CAGKIgKwWAAAA
H4sIAAAAAAAEADM3LwouC3QyS3UxjEzJKE1xjzBPjjQNNnW0KEx3LvEIBAA344oEIAAAAA==
H4sIAAAAAAAEACspKk0FAI1M/P0EAAAA
H4sIAAAAAAAEADM0NDUAAgAIiUAYBwAAAA==
H4sIAAAAAAAEAHPLL8o1BABPFCykBQAAAA==
H4sIAAAAAAAEAItJ0khKNqyJNjSO1YxO1K1y1PXw0vUL0I0y0LWMrTYy0zE2rY1JAgBYQLi2JgAAAA==
H4sIAAAAAAAEAItLSjaMTtStctT18NL1C9CNMtC1jK02NtUxMayNSQIAJ8XeOx4AAAA=
H4sIAAAAAAAEANMwqNCMTtRNc9R1M9C1jK02MagFADdPuBoTAAAA
H4sIAAAAAAAEAIs2sYiNNtC1dHSKjTYEUroeXrp+AbpRibrZubpVsdWWxrUAiXJp4yMAAAA=
H4sIAAAAAAAEAItzjzbQtUzUrXLUjYqtNjWtVQEA5mLlfRIAAAA=
H4sIAAAAAAAEAIsrijbQtUzUrXLUjYqtNjLRMTapVQEAzouDRxUAAAA=
H4sIAAAAAAAEAItzjDbQtUzUrXLUjYqtNjauVQEAgPY3+xIAAAA=
H4sIAAAAAAAEAIvT0EjKLEnOz8xLTizOsNK01yisKdCMTtStMtC1jK02MazVBACxSNZDIwAAAA==
H4sIAAAAAAAEAIv28Y2NTtTNztWtctT18NL1C9CNMtS1jK02MtMxNq4FAM/UWSwfAAAA
H4sIAAAAAAAEAItzqTasjTbVtXTU9fDS9QvQDY0FCRgiBKISdbNzdatiq42NalUAH3U+yi8AAAA=
H4sIAAAAAAAEAIuLiDbUtXTU9fDS9QvQjUrUzc7VrYqtNjauVQEAH31rnRsAAAA=
H4sIAAAAAAAEAIsLiU7UrXLUjTLQtYytNrLQMTauVQEA/E+faRUAAAA=
H4sIAAAAAAAEACsxjDbQtXTUrYqtNjauBQDTkY7EDgAAAA==
H4sIAAAAAAAEANNIykvS1IhO1K0y0LWMrTa2rNUEAN694zQTAAAA
H4sIAAAAAAAEANNLSiwBAJz3dAEEAAAA
H4sIAAAAAAAEAHNITc7IV8hPSwMAyqnEkQkAAAA=
H4sIAAAAAAAEACvJzE3NLy1RMFewU/AL9QEAh4LKEQ8AAAA=
H4sIAAAAAAAEAHN2UQAAQkDmIgMAAAA=
H4sIAAAAAAAEAHNx9VFQAgB5sP/+BQAAAA==
H4sIAAAAAAAEAFNS0E9T0C8EANDdbZIHAAAA
H4sIAAAAAAAEANNLrUgFAPNoi/UEAAAA
H4sIAAAAAAAEADWb2bKsKpRFf6geLESBz6FoQ5qgB/n6WvuY9+nGie3N1NXMOaaa/yf+NyeeXpGuK6twMnMhh/st/F65HpLLtvG6Bar/839w6BLZGLrz5a5YjZri1YHLLnUOgr2uhe18I/8O9aWRzed+E7VSMszOcFn13LIuQ9Phr6S28v8ODdLHU8ukLxHWYS5ytWIaLim5sxca+3GEmf8demVvOEMidIaqpXFgd9krlkZNTheR1/T7Sv8OtUrhUBxOflVzFhTfKqrDyql2HPsYXdfAzb9DN7+sFpJzMe43cy+cdtS/OkZxWq0fnX0l9t+h2MpUbuacrs2wdg4mkrvVeBRzY5y0z9kJ+3coKv5As/e0ZGa5I07VonGKQsvt8ur9cdet/h061SNiqNq0123klFTvDYXDrjLSqzqYe0jc/w7VL+NoxWS53tOmiOzxIKi/SRqbgz8DSba/c+Xbib1Yz03Hxu9dipP6dbYwijacAd9prO9T2xGCfPKIARPXYhK27ZSXFbK3txzNRKTV14KJkmL3eAo1b6fRtRz7HdeVljck4WEiL+yrwNGSVm6UfZ1tIzZNCCU53RYyGekXBXt6R79ivbcnHnt0Lp+riJeTaqeVTfLUiqPzKNiY/w5VbLtuLtzPJ2FD9k3YijpTTxCM1/DDdG3lv0MfcZhxaR8X6sYiXxSuRioa7JOqS88dHsqef4cylnEvMl7nYwiUM4r7hEFQPiA++qbzejv+Lisr9ZY1xeKJkN54q0KPYp6zqz0OHfHxsvU1ttZwumwfLlYrayM1xxUx97Y8iG/PbR8hfxVQXC42YFSVQD107sOZHlsEEzubIt9KHpK+3XpeeS0yFtZPmC2b81qBpP48+RylixAfeeTjW8O51M21uXVlTKfL3Ae93sRluQ2BryKRW/YtzIp5O1WHvMd2D+dLyytxfBpBH5UGVlQpur7GrgnLsq/X6TQfgjC55ipXIh0+21bvr3wS/k3WDC7ZfLdTZxVzeI15ct2ct/xolJKBdYqf
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
H4sIAAAAAAAEAF3Px3HFIAAA0YZ0YMi4GxkEfIJMELF662oX8GZ2czKg3BxOJZr0vjBEh4tJpc0NxbdWVWNVtwHkyBuDpU1Bk0/rrTspXgRINBq9oNNTLsIbTI+LR85NcGMXCM1U73u01uzuK7KopDa5yrFEZIoIx/fnkT+fW57Vfr1MOpsjWfewQC+ilBhU1RFkIttAWy2bhZGS/jGpFV5z+BDQBTAZbGN4BZg8jEWOWU83MOXQ/GWpxxbPq8nJ9G56zlA7DsyvB6ggsO/46tk0s9716MyTplSZt0B6vDXa+mkCIDYi0udap630rT1+AQ31k0VRAQAA
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
H4sIAAAAAAAEAAXBxwHDIAwAwIXykgV6I5qxCJEbZf9FcpcD3pecHMlQAq/TH1gWvWJ92zHoCgp8uWdLbCMIqMRH7lA+mQf1psTybSgTXthMP6hZl89YfRtp9bUPMk5LJcQ3/yarrX8/yKhhcQAAAA==
H4sIAAAAAAAEACvySI4oyrPIyo/wMQpMNXdK9M3LcDINCyrNMozwds0NDTfTKfJyCQgM9kmySHVLLIlM90oqdqwIDyssqzAtzTfycAryAABjpbmBRAAAAA==
H4sIAAAAAAAEAIuoDImoKs4L8M3zy/DwCKtMrTQr9CmKTKnIsMivdHP0KTfViUjLNLOocs/KS09M9Y1wskgPKvVOCrNML8mK8kh09QpxMgcAEvdTuUUAAAA=
H4sIAAAAAAAEAA3MzZZDMBgA0BfKhiqxbIM6Uk61nxA7PxXSU9GhJjz9zH2AC6mTYSPGeXJYogEMHD/HX8vFinLb+2ihjgguD2bh3P1OsolL16owe41QKMMKzIap6t4giIiIAirld7/hJgmX89apGk5NwQfNBCcGgvTiW1hw+3uFAM59u2dDa/OFjMyQtaatRkAm5pCWB6Jv7s+oGy9CODrUIUm3kh7ba/G/zJy4+80MZ5q+n1n68Cei2U+eHXmSjDIpEfg9tu2+J75LKFlV/ebrsk7XRc5TdwqIMyIo5tuabB+zwqaKLbnXFNbJ8+wXBI5bwuagP0lhOUsYAQAA
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
H4sIAAAAAAAEAA3KURKAEBAA0Av5UBgch7CGZYrW1O3rfT/f/VbgfofgS9ogZEeYrtmKGiPplmueBcwcivm/Glcy7pd9XJIr8l7xpRCbOhSlLghOyhAd+wCkLMtnVgAAAA==
H4sIAAAAAAAEAAvOTyspTyxKjfHNTC7KLwbyYsIz81Lyy4tjnEuLilLzSsJSi4oz8/NigkrzAHLTHVUtAAAA
H4sIAAAAAAAEANNPLkpNLElV0C/JUwAAZB8pygwAAAA=
H4sIAAAAAAAEAFPQLylSUAIA8/IzBgYAAAA=
H4sIAAAAAAAEAFNS0C8uUQAAwd+85AYAAAA=
H4sIAAAAAAAEAPPwsMrNBQAO/K06BQAAAA==
H4sIAAAAAAAEAFPQTylVMDK2MrVU0C9OVkhJzMypVNAvylQwVNBPAwD/CoW5HQAAAA==
H4sIAAAAAAAEACtOzihJLM4u1kutSAUA9QsHRwwAAAA=
Software\Microsoft\Windows\CurrentVersion\Run
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
000004b0
FileDescription
FileVersion
0.0.0.0
InternalName
Stub.exe
LegalCopyright
OriginalFilename
Stub.exe
ProductVersion
0.0.0.0
Assembly Version
0.0.0.0
Antivirus Signature
Bkav Clean
Lionic Clean
tehtris Clean
MicroWorld-eScan IL:Trojan.MSILZilla.25775
CMC Clean
CAT-QuickHeal Trojan.Generic.TRFH800
ALYac IL:Trojan.MSILZilla.25775
Cylance unsafe
Zillya Clean
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Clean
Alibaba Clean
K7GW Clean
Cybereason malicious.d58037
BitDefenderTheta AI:Packer.6CDC83CE1F
VirIT Clean
Cyren Clean
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 a variant of MSIL/ClipBanker.XL
Cynet Malicious (score: 100)
APEX Malicious
Paloalto Clean
ClamAV Clean
Kaspersky HEUR:Trojan-Banker.MSIL.ClipBanker.gen
BitDefender IL:Trojan.MSILZilla.25775
NANO-Antivirus Clean
SUPERAntiSpyware Clean
Tencent Clean
Sophos ML/PE-A
Baidu Clean
F-Secure Trojan.TR/Dropper.Gen
DrWeb Clean
VIPRE IL:Trojan.MSILZilla.25775
TrendMicro Clean
McAfee-GW-Edition GenericRXVZ-XN!9FDC64EC19B8
Trapmine malicious.high.ml.score
FireEye Generic.mg.9fdc64ec19b88144
Emsisoft IL:Trojan.MSILZilla.25775 (B)
Ikarus Trojan.MSIL.ClipBanker
Jiangmin Trojan.Banker.MSIL.hke
Webroot Clean
Avira TR/Dropper.Gen
MAX malware (ai score=87)
Antiy-AVL Clean
Microsoft Trojan:MSIL/ClipBanker.GFX!MTB
Gridinsoft Clean
Xcitium Clean
Arcabit IL:Trojan.MSILZilla.D64AF
ViRobot Clean
ZoneAlarm HEUR:Trojan-Banker.MSIL.ClipBanker.gen
GData IL:Trojan.MSILZilla.25775
Google Detected
AhnLab-V3 Trojan/Win.Generic.C5378312
Acronis Clean
McAfee GenericRXVZ-XN!9FDC64EC19B8
TACHYON Clean
DeepInstinct MALICIOUS
VBA32 Dropper.MSIL.gen
Malwarebytes Clipper.Trojan.Stealer.DDS
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Rising Clean
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.300983.susgen
Fortinet MSIL/ClipBanker.XL!tr
AVG Win32:BankerX-gen [Trj]
Avast Win32:BankerX-gen [Trj]
CrowdStrike win/malicious_confidence_100% (D)
No IRMA results available.