popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2023-09-23 21:29:00

PE Imphash

9a27b05ceaf94172ed30a41e9748fab9

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x000088b4 0x00008a00 6.77587524457
.reloc 0x0000a000 0x0000002d 0x00000200 0.773613376414
.rdata 0x0000b000 0x00001bc6 0x00001c00 5.559096744
.data 0x0000d000 0x00001800 0x00000e00 2.30289272685
.rsrc 0x0000f000 0x00055460 0x00055600 5.95975634827
.nwqrbh 0x00065000 0x00004000 0x00004000 6.33889467712

Resources

Name Offset Size Language Sub-language File type
RT_RCDATA 0x0000f060 0x00055400 LANG_ENGLISH SUBLANG_ENGLISH_US data

Imports

Library KERNEL32.dll:
0x40b000 WaitForSingleObject
0x40b004 Sleep
0x40b008 CreateThread
0x40b00c lstrlenW
0x40b010 VirtualProtect
0x40b014 GetProcAddress
0x40b018 LoadLibraryA
0x40b01c VirtualAlloc
0x40b020 LockResource
0x40b024 LoadResource
0x40b028 SizeofResource
0x40b02c FindResourceW
0x40b030 GetModuleHandleW
0x40b034 GetLastError
0x40b038 CreateMutexA
0x40b03c GetModuleHandleA
0x40b040 FindFirstVolumeW
0x40b044 FreeConsole
0x40b048 GetCommandLineA
0x40b050 ExitProcess
0x40b054 WriteFile
0x40b058 GetStdHandle
0x40b05c GetModuleFileNameA
0x40b06c WideCharToMultiByte
0x40b074 SetHandleCount
0x40b078 GetFileType
0x40b07c GetStartupInfoA
0x40b084 TlsGetValue
0x40b088 TlsAlloc
0x40b08c TlsSetValue
0x40b090 TlsFree
0x40b098 SetLastError
0x40b09c GetCurrentThreadId
0x40b0a4 HeapCreate
0x40b0a8 VirtualFree
0x40b0ac HeapFree
0x40b0b4 GetTickCount
0x40b0b8 GetCurrentProcessId
0x40b0c8 TerminateProcess
0x40b0cc GetCurrentProcess
0x40b0d4 IsDebuggerPresent
0x40b0dc GetCPInfo
0x40b0e0 GetACP
0x40b0e4 GetOEMCP
0x40b0e8 IsValidCodePage
0x40b0ec HeapAlloc
0x40b0f0 HeapReAlloc
0x40b0f4 RtlUnwind
0x40b0f8 HeapSize
0x40b0fc GetLocaleInfoA
0x40b100 LCMapStringA
0x40b104 MultiByteToWideChar
0x40b108 LCMapStringW
0x40b10c GetStringTypeA
0x40b110 GetStringTypeW
!This program cannot be run in DOS mode.
`.reloc
`.rdata
@.data
@.nwqrbh
5opn5;,
arz}~?
>=Yt1j
j@j ^V
teh!O@
0SSSSS
0SSSSS
0SSSSS
0A@@Ju
URPQQhhy@
t"SS9]
PPPPPPPP
PPPPPPPP
;t$,v-
UQPXY]Y[
t+WWVPV
bad allocation
kernel32.dll
2OKDex5crKreK5DngcwQmbJ9EYtN4tIqpLJqOMjexCdVVXWrtpOJ6bk4ztO3%
CorExitProcess
runtime error
TLOSS error
SING error
DOMAIN error
An application has made an attempt to load the C runtime library incorrectly.
Please contact the application's support team for more information.
- Attempt to use MSIL code from this assembly during native code initialization
This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
- not enough space for locale information
- Attempt to initialize the CRT more than once.
This indicates a bug in your application.
- CRT not initialized
- unable to initialize heap
- not enough space for lowio initialization
- not enough space for stdio initialization
- pure virtual function call
- not enough space for _onexit/atexit table
- unable to open console device
- unexpected heap error
- unexpected multithread lock error
- not enough space for thread data
This application has requested the Runtime to terminate it in an unusual way.
Please contact the application's support team for more information.
- not enough space for environment
- not enough space for arguments
- floating point support not loaded
Microsoft Visual C++ Runtime Library
<program name unknown>
Runtime Error!
Program:
EncodePointer
DecodePointer
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetProcessWindowStation
GetUserObjectInformationA
GetLastActivePopup
GetActiveWindow
MessageBoxA
USER32.DLL
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
HH:mm:ss
dddd, MMMM dd, yyyy
MM/dd/yy
December
November
October
September
August
February
January
Saturday
Friday
Thursday
Wednesday
Tuesday
Monday
Sunday
SunMonTueWedThuFriSat
JanFebMarAprMayJunJulAugSepOctNovDec
WaitForSingleObject
CreateThread
lstrlenW
VirtualProtect
GetProcAddress
LoadLibraryA
VirtualAlloc
LockResource
LoadResource
SizeofResource
FindResourceW
GetModuleHandleW
GetLastError
CreateMutexA
GetModuleHandleA
FindFirstVolumeW
FreeConsole
KERNEL32.dll
GetCommandLineA
SetUnhandledExceptionFilter
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
HeapFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
5255515556655}5555555
55555555555555555555555555555555555
5555555
55555555U534*4
555555
555U1555
55535515555555155555555
055355555535
55%55%5555%55%555555%55555555555
5555U15W
5555555555555555555
05)5555555555555555555555555555555555555555555555555555
55-55555555555-
55555555555
155355555555555555
555U155
15555555555555
55)5555
0553555
05555555555555
5555555555555555
b155555
5553505m435
d352555
,5/%435}5555555555555555555555555555555555555555555
77eDw/
G\}LeY
~a2EWpl
4MM^'
/55133
%55121
551310
551310
-5532'1
f5543
*55+3
!55+33
m55+33
=55+3!
/45+32
45+73
45+73
45+73
45+73
e45+32
k-5/!72
45+&4
@45+7174
N55+21
N55+21
45+%332
i5517/
i5517/
35+74
35+72
35+72
35+74
320232
320232
35+7374
3210'1
3210'1
3210'1
3210'1
3210'1
3210'1
3210'1
3210'1'0
7474
H35+&5
G35+&5
F35+210'1
A35+ 74
7474
A35+7374
635+&4
935+&4
;35+72
;35+74
35+210'1
555555E
555555Ev
'25+ 74
7474
'25+7374
25+ 74
7474
25+7374
25+ 74
7474
25+7374
25+ez554
7474
7474
25+ 74
7474
25+7374
25+ 74
7474
25+7374
25+ 74
7474
25+7374
35+e/55
k&57/55
&437/55
#&517/55
;25+ 74
7474
&527/55
&517/55
;25+7374
925+74
7474
,15+ 74
7474
,15+7374
'15+ 7474
@45+ 7474
`5517/
`5517/
35+74
35+74
!45+74
45+74
35+74
15+%533
`5517/
`5517/
15+%53
3210'1
7474
3210'1
3210'1'0
3210'1
3210'1'0
15+ 74
7474
15+7374
15+ 74
7474
15+7374
15+ 74
7474
15+7374
`5517/
N45/ 7474
N45/ 74
7.g15+
`5517/z.5/
`5517/y.5/
`5517/x.5/
`5517/w.5/
`5517/r.5/
`5517/q.5/
#45+21
`5517/p.5/
`5517/o.5/
`5517/n.5/
#45+21
`5517/m.5/
#45+21
#45+21
`5517/f.5/
#45+21
#45+21
#45+21
#45+21
#45+21
&57/55
&57/55
35+21
&57/55
&57/55
&57/55
35+21
&57/55
&57/55
&57/55
&57/55
35+21
&57/55
35+21
35+e/55
&57/55
&57/55
&57/55
&57/55
&57/55
&57/55
&57/55
r05+31
r05+31
{55+3
\35+74
X35+74
J05+74
#45+23
#45+23
#45+23
j45+21
05M455455$5
["1"0
i554"//
f554".
455",
#$/$,.$1$,
M$/$/
"*$.$0
555355$3
f554)(
55+"1$1
55+"0/
"/./$0$/$1
455255$
45513,7
"0e/55
-#47 /55
#.7 /55
455255$
45513,7
"0e/55
-#47 /55
#.7 /55
455255$
45513,7
"0e/55
-#47 /55
#.7 /55
455255$
45513,7
"0e/55
-#47 /55
#.7 /55
455255$
e555/
45513,7
"0e/55
-#47 /55
#.7 /55
15X555155$2
.55133
/55133
555155$
555055$
555/55$
,55/(/
555/55$
,55/(/
555.55$32
-5513
/5513
.551+
555-55$3
.551+3
/551*)2(
"1./$1
.5513.
25W555.55$3
555155$3
555155$
25455,55$3
$55113
255+55$321
55/#57 +553#5
55/*)("1
"0'1"/$0$/
!551
55/".3
$551$.
55/"+#5
!551$0
!551$0
55/",3
$551$,
.$1"),"1-(.)$)*3
!551$-
555,"1-(.)
!551$-
"551$*
)55/"($(
#551.$(
!551$'
!551$'
$551.$*
55/$0$*
"0$0$/
555*55$2
)("1
55/3./
55/3-
555155$3
555155$3
-55/+
555155$3
555)55$3
555)55$
555.55$+
555155$
555,55$
,55/)/
555155$3
555)55$3
555155$3
555155$3
355(55$
55+#5&5
55+-/.
55+-$1
55+#5&5
55+-/.
55+-$0
55+#5&5
55+-/.
55+-$/
55+#5&5
55+-/.
15X55555553
55137/
55555553
355'55$2
55+"1#1
55+"1#1
55/(/3
551"0$0
15550555
4550455
55+"./$/,
55+$.3
55+Y$/
55+",/$-,
55+$,3
55+Y$-
55+"*/$+,
55+$*3
55+Y$+
55+Y32
5535H5
4)555535`5
4)555535
4)555535
4)555535F4
3)555535`4
3)5555"
55555553
555&55$3
55++#5
455%55$2
55+*/.3
55+W+.
55+"1/3
55+"//3
55+$03
55+Y$0
55+Y32
5+555535T5
24)555535i5
&4+555535
4)555535
4)5555"
35S555555532
555$55$32
55%574
|55+*.
55%574
55%574
355#55$2
55++#4
55+)#2
55+"13
55+"*/$*
55+W)$*
55+"1/
v55+$1
55+"0#/
55+".3
55+")/$)
55+W)$)
55+"./3
$0$.$/
v55+$.
55+"-#,
55+"+3
55+"(/$(
55+W)$(
55+"+/
$-$+$,
v55+$+
u55+32
5)555535
4)555535
3)5555"
55555553
55555553
55555553
n55+33
m55+33
55555553
555"55$2
55++#4
55+(/-.
e55+/,
d55+W!,
55+Y32
5+555535
5+5555"
55555553
555555532
55555553
55555553
55555551
V55+31
55555553
_55+33
25*45555553
45555553
55137/r55/
55137/
55137/
55137/
55137/
55137/
55137/
55555553
55137/~55/
55137/
455!55$32
<55++/
;55+*3
:55+)#3
5513
855+.3
855+.3
554
555555532
55555553
,5Q055 55$
.45++3
5517/T55/
`55/"1
b-5/"0$1
N55+"/$1,
(45+"/
:-5/"/$/
m255$/
45+"-#-
45+$/
45+"/$1
;-5/".$.
45+"*$17/_55/
5517/S55/
",$17/^55/
5517/R55/
"+$17/]55/
5517/Q55/
455!")
}-5/")
45+"'$'
cW'#(7$55
55+Y$)
555$17/\55/
5517/P55/
",$17/[55/
5517/O55/
"+$17/Z55/
5517/N55/
W5$0$/
n-5/$0$.
l-5/$0$17/Y55/
5517/M55/
j-5/$0$,
d-5/$0$17/X55/
5517/L55/
h-5/$0$17/W55/
5517/K55/
f-5/$+
b-5/"%$%$/
n-5/$%$.
l-5/$%
j-5/$%$+
d-5/$%
h-5/$%
f-5/$%"&/$&
b-5/"%$%$/
n-5/$%$.
l-5/$%
j-5/$%$*
d-5/$%
h-5/$%
f-5/$%"$/$$
:66W'#37)55
;66W+.
55+YW2
555555)255
2552555255435554255
255'55555555555c355
455E2552555`5545555
0552555`5543555F555l155}055'55555553555
055b055+55555555555/555\055V05525552554
45555$
b55/).
45/"1$1
B-5/"/$/$1$0
G-5/$/$1$0
E-5/$/$1$0
C-5/W2
G-5/$/$/
E-5/$/$/
C-5/Y$/
"0$0$1
;766W2
555555
5552555`5543555
55555555555
4552555`5545555/555
4552555`554
45++32
b55/).
45/"1$1
455!"/
R-5/"/$/
45+".#.
45+".#.
V-5/W2
"0$0$1
c766W2
555555
555>555
455255525545555
455255525545555/555
4552555`554
./(XB5553
b55/).
45/"1$1
555!"/$1$0
45+".$.
c55/".
p-5/"-$-$1$0
s-5/$-$.
q-5/$-"/W2
"0$0$1
555555
555F555255525545555
555S555!4552555`5545555/555"455
4552555`554
./(XD5553
b55/).
45/"1$1
555!"/
J-5/"/W2
"0$0$1
555555
555H555255525545555
555U555#4552555`5545555/555$455
4552555`554
N55++3
45++W2
4%5555/5
52`554
N55+*3
45+)--
ed554
45++W2
5555552455
3552555`5545555)555
35525552554"
5554%5555/5
522554
H55/(,
554"1$1
55+YW2
5!555555/5
522554
05H455
B-5/+3
{766W$.
G-5///
E-5///
C-5/Y/
553555#555
455$55555555555/555
455255525543555/555
5555555
.45++3
5517/@55/
*45+)-
#45+"1
D55/"0$0
f-5/"/$/
666W'#27)55
55+YW2
P766W+.
55+YW2
553555
555{555
455'55555555555
555/455
455255525543555
455+55555555555/555
4552555`554
./(XJ555.
555!"0-$1
R-5/"0W2
555555
555H555255525545555/555*455$45525552554
N55++3
(45+%53
4%5555/5
522554
N55++3
(45+%53
4%5555/5
522554
./)Xg355
355.$1,
45+"-$-
45+",$,
45+"+$+$,
45+"*$+
45+")$*
45+$*
45+$)
-5/"&$'
766W $.
554"%$%
55+Y$0
866W)$0
555555x455
455C355255525543555
4552255 55555553555n555
255)55555555555/555
25525552554
54%555555%%50`554
45 555
,5/+W0
5554%555555''50`554
/454+3/
554%555555
50`554
!5G-55
n255$/
55+"./
45+"-$-
ed554
ed554
966W $/
554",$,
55+YW2
=66W!,
554",$,
>66W!.
554",$,
55+YW2
555555v155z255
-552555`5543555
155[255
-55 555555555559555
-55255525543555F555r.55
-55!55555553555
-55b-55!55555555555/555R-55L-5525552554
/58555
45++3*)
W555.-
45+"0$0
3,5/$0
45+"./$.
55+YW2
666W)$1
55+YW2
52`55435
|5)555555
n52255435
5}]5)555555"5bO52255455/5C=522554
45+("1
!455,$1
"0"//
'45+"-
&45+",$0$,
WW'#-7)55
55+Y$/
s5555$0
45+"+$+
45+"."*")
")$)$.
#45+21
'45+"-
&45+"&.$&
YW'#-7)55
55+Y!"+W2
S766W2
553555
555'55555553555
455'55555555555i555w555
455255525545555
45525552554
-5X355
*45+(.
45+"1$1
355$1
45+"0$1
45+"/$1
45+"-$0
45+","+
B555$,$+
"*$*$.
+45+")
*45+"($(
%45+"'$'
45+"&/$'
45+.$'
666W)$)
55+YW2
"+$+$,
T555$0$.
+45+")
*45+"%$%
%45+"$$$
45+"#/$$
45+.$$
666W)$)
55+YW2
866W+-
55+YW2
q5555553455
455255525543555A555w555
455)55555555555X555R555u4552555255455557455
3552555`5543555E455w555
355)55555555555
355y3552555`5543555%555y355i355+55555555555/555c355]35525552554
*45+"1/
'45+"/
&45+".$1$.
WW'#/7)55
55+Y$0
%.$121
55+YW2
W51"-",
"+.3$+
",$,$-
z5'555535
N5+555555
B5225545504$422554"
55555551
*5$355
'45+"1
&45+"0$0
666W'#17)55
55+YW2
553555
455m555>455'55555555555
455U555.355255525545555/555/355)35525552554"
555555532
5517/)45/
5517/(45/
N55+"1
N55+"0,
#45+"1$1
)45+"0
:-5/"0$0
/455$0
45+".#.
45+$0
45+"0$1
;-5/"/$/
{45+"-
z45+",/
/,5/"+$+
2,5/$+
6-5/$+
0,5/$+$1
)45+#,
4,5/$+
666W)$-
55+YW2
766W'#37)55
C866W+.
55+YW2
553555
355)55555555555
355255525543555
355'55555553555
555 355
355+55555555555/555
35525552554
)45++1
N55+).
45+(W0
5554%5555%5
522554
/5N355
/,5/"1$1#4
6-5/$1
2,5/$1,
4,5/$1
0,5/$1
45+"0"/
/,5/"1$1#4
6-5/$1
2,5/$1$.
4,5/$1
0,5/$1
"/$/$0
b766W'#37$55
45+"-/
/,5/"1$1#4
6-5/$1
2,5/$1$-
4,5/$1
0,5/$1
45+"0"/
/,5/"1$1#4
6-5/$1
2,5/$1$,
4,5/$1
0,5/$1
"/$/$0
555555
555455q4552555`5543555
455`455'55555555555/555Y355S35525552554
/,5/)-.
2,5/-
5554%5555/5
522554
n45+"1
554"0$0
45+"//
m45+$/
554".$.
55+YW2
666W'#37
,5/"-$-
52255435
5 555555
k52255435
5yZ5'5555
)45++W*W2
54%555555
522554
05D555
h45+*.
./(Xp555.
d554)-
/,5/"1$1-
4,5/$1
2,5/$1
0,5/$1
/,5/"1$1-
4,5/$1
2,5/$1
0,5/$1
5554%5555/5QK522554
/5|555
/,5/*.
2,5/.
5554%5555/5
522554
554%5555/5
522554"
05{455
45//7/
45//7/
45/32/
45/("1
"0$0#4
"/W5$/
555555
455*555
4554555
4545555
455*555
4552555`55455555555
4554555
45455555555
455/555`554
45+*#4
555555
4%555555
522554
45/+*
5555'5,
45455'5,
52`5545555
4545555
50`554"
55555553
-5/+#57
55555553
655/*/
.45+)-/
N45+-/
,5i555
,45/)-/
15o555
J45+73
45+"1$1
,5/,$1
I45+W2
W'#37)55
52255435
~5'5555"
55555553
|5517/
55$ +3
1!(W%32/
45/(W0
54%555555
502554
45/".2
45/"-3$.
45/",3$.$-
45/"*$*")3$+
454"'"&
45/")$'$&3$%$)
$'$&$'$&
551$'$&
~551,$/
551$+$(
~551,$/
551$+$(
~551,$/
551$+$(
~551,$/
}5533$+$(
~551,$/
551$+$(
~551,$/
551$+$(
~551,$/
551$+$(
L451$/
j966W2
5555555555
15525552554
55$ +)
.(X=5553
45+*"1
.$1.$1
=45+"0$0
%.$1.$1
551$1.$1
45/(W0
5555555555
45505552554
Q25532
155*3
}551(
45/"12
45/"03$1
45/"/3$1$0
45/"-$-",3$.
45/"+!"*$.$-
q555$*$(
45/",$*$(
~5533$'$,
O451$*$(
~553$*$(
551$*$(
P451$)$,$'
"($)$+
}551.,
|553$*
K451"&"%
g455$*$%
455$*$%
}551.,
K451$%
551$.$+
}551.,
K451$%
551$.$+
}551.,
K451$%
551$.$+
}551.,
K451$%
551$.$+
}551.,
K451$%3$.$+
$&$*$%
"%$%$*
""332$"
"#$#$$
5555555555
15505552554
5554%555555
5,2554
73174
5554%555555
5/2554
1.+W .
4%555555
502554
/51455
f554+12
*).74.
".X[555.
:45+".X|555.
"1"0-
:45+".W.
".W5$.
4%555555;;5.2554"
35)555
55$3+#52
745++/
535+*.
j45+)W
235+(3,
035+)W)W2
5+555535#5
5+555555-5
25545555
522554
745++/
535+*.
335+)W
235+(3,
/35+)W.W2
5+555535#5
5+555555-5
25545555
522554
#47 /55
554%555555""5(`554
,5#455
x5517/
x5517/
"35+*#4
35+(W0
554%5555
5v*422554
35++*
35+ed554
554%555555
522554"
y551+*
55$1+3
55$&41
35++&41
35+*3/
55$2#37
45++#5
25!555
35++/3
35++/3
-5P555
&57/55
)35+*2)(
)35+"1
35+.$1
&57/55
)35+*2)(
)35+"1
35++#57/55
35++#52
555.55$3
@45++/
555.55$3
35++/
555.55$3
@45++2
555.55$3
35++21/
45++32/1
35++/1
35+/7/
35+*3/
35++/1
35+/7/
35+*3/
35+.0'1
35++/1
35+/7/
35+*3/
35+.0'1
55$2+*
55$1+*
55$2+*
55$2+*
55$2+*
55$2+*
55$1+*
55$2+*
35+*3.
NW'#57
554%5535#5
5'5555
35++/*3
35+(#2
54%5535&5
5+5555
z45+)/#3
w45+#3
5554%5535#5
5+5555"
55$2+*
55$2+*
35+)/-
SW'#47
4%5535#5
5'5555
35+)/-
MW'#47
554%5535#5
5'5555"
555.55$32
35+3/1
35++/
35+*)
55++/
f554("1
$-,$0
55+$1$0
35+$1
55+"/W
55+Y$/
5535 5
5+555535&5
5+555535.5
5+5555
55++/
f554("1
$-,$0
55+$1$0
35+$1
55+"/W
55+Y$/
5535 5
5+555535&5
5+555535.5
5+5555
35+)/-
5+555535
5+555535.5
5+5555
35+)/-
55355,
5+555535'5
5+555535.5
5+5555
35+)/-
5+555535"5
5+555535.5
5+5555
35+*/
35+)-.
5+555535
5+555535.5
5+5555
35+)-//
35+(W!-
5+555535#5
5+5555
35+)-//
35+(W!-
55355
5+555535'5
5+5555
x35+*W+/
4%5535.5,%5+5555"
45555553
555145514551455|555y555v555s5551455145514551455p555145514551455m555145514551455j5551455h555e555b555_555]5553
555c555
555c555
55$3273
43*/./
`5517/
@35++#5
@35++#5
@35++#5
@35++#5
@35++#5
>35++#5
555555E
\45++#5
>35++#5
45++#5
55$3+2
##5.#5
\45++#5
>35++#5
:35++#5
>35++#5&5
835++#5
835++#5
>35++#5
55$#5&5
>35+#5
45555553
555145514551455|555y555v555s5551455145514551455p555145514551455m555145514551455j5551455h555e555b555_555]5553
555c555
555c555
45555553
555145514551455|555y555v555s5551455145514551455p555145514551455m555145514551455j5551455h555e555b555_555]5553
555c555
555c555
#47 /55
4%555555,,5(`554
45%555
4%555555,,50`554
45 555
45++W5/
5554%555555,,5+`554
35555
25++W5/
554%555555,,5*`554
35+*/.3
554%5535)5
5+5555"
35"555
m45+#5
35"555
m45+#5
35'555
m45+#5
35"555
m45+#5
35"555
m45+#5
35"555
m45+#5
35"555
m45+#5
35"555
m45+#5
35'555
m45+#5
35"555
m45+#5
35"555.55$3
m45+#5
35"555
m45+#5
35"555
m45+#5
35"555
m45+#5
35"555155$3
m45+#5
35"555
m45+#5
25+)W5-
554%555555
5*`554"
25++/2
25+3/7/
25++/2
25+3/7/
45%555
~25++W0
4%555555,,50`554
45%555
~25++W0
4%555555,,50`554
~25++W0
5554%5555,5,#50`554
45 555
~25++W+
}25++W5/
5554%555555,,5+`554
~25++W+
}25++W5/
54%5555'5,
5+`554
45%555
|25++W0
4%555555,,50`554
45%555
|25++W0
4%555555,,50`554
|25++W0
5554%5555,5,#50`554
45 555
|25++W+
{25++W5/
5554%555555,,5+`554
|25++W+
{25++W5/
54%5555'5,
5+`554
45%555
z25++W0
4%555555,,50`554
45%555
z25++W0
4%555555,,50`554
z25++W0
5554%5555,5,#50`554
45 555
z25++W+
y25++W5/
5554%555555,,5+`554
z25++W+
y25++W5/
54%5555'5,
5+`554
v25++W(
554.+W5/
554%555555""5(`554
v25++W0
554%555555""50`554
v25++W0
54%5555,5"
50`554
v25++W+
u25++W5/
54%555555""5+`554
v25++W+
u25++W5/
5554%5555'5"
5+`554
x25++W(
554.+W5/
4%555555,,5(`554
45%555
x25++W0
4%555555,,50`554
x25++W0
5554%5555,5,#50`554
45 555
x25++W+
t25++W5/
5554%555555,,5+`554
x25++W+
t25++W5/
54%5555'5,
5+`554
45!555
s25++W,
r25++W5/
4%555555,,5,`554
45%555
s25++W0
4%555555,,50`554
s25++W0
5554%5555,5,#50`554
45 555
s25++W+
q25++W5/
5554%555555,,5+`554
s25++W+
q25++W5/
54%5555'5,
5+`554
p25++W(
55555555+W5/
4%555555,,5(`554
45%555
p25++W0
4%555555,,50`554
p25++W0
5554%5555,5,#50`554
45 555
p25++W+
o25++W5/
5554%555555,,5+`554
p25++W+
o25++W5/
54%5555'5,
5+`554
45!555
n25++W,
5555+W5/
4%555555,,5,`554
45%555
n25++W0
4%555555,,50`554
n25++W0
5554%5555,5,#50`554
45 555
n25++W+
m25++W5/
5554%555555,,5+`554
n25++W+
m25++W5/
54%5555'5,
5+`554
l25++W,
25++W5/
5554%555555''5,`554
45 555
l25++W0
5554%555555''50`554
l25++W0
554%5555,5'
50`554
l25++W+
k25++W5/
554%555555''5+`554
l25++W+
k25++W5/
4%5555'5'
5+`554
45%555
j25++W0
4%555555,,50`554
45%555
j25++W0
4%555555,,50`554
j25++W0
5554%5555,5,#50`554
45 555
j25++W+
i25++W5/
5554%555555,,5+`554
j25++W+
i25++W5/
54%5555'5,
5+`554
45%555.55$3
h25++W0
4%555555,,50`554
45%555.55$3
h25++W0
4%555555,,50`554
555.55$1
h25++W0
5554%5555,5,#50`554
45 555.55$3
h25++W+
g25++W5/
5554%555555,,5+`554
555.55$1
h25++W+
g25++W5/
54%5555'5,
5+`554
45$555
f25++W/
5554%555555,,5/`554
45%555
f25++W0
4%555555,,50`554
f25++W0
5554%5555,5,#50`554
45 555
f25++W+
e25++W5/
5554%555555,,5+`554
f25++W+
e25++W5/
54%5555'5,
5+`554"
"35++W+
"35++W5/
5554%555555
5+`554
"35++W0
4%555555
50`554
"35++W+
d25++W5/
5554%555555
5+`554"
c25++W+
c25++W5/
5554%555555
5+`554
c25++W0
4%555555
50`554
c25++W+
b25++W5/
5554%555555
5+`554"
a25++W+
a25++W5/
5554%555555
5+`554
a25++W0
4%555555
50`554
a25++W+
`25++W5/
5554%555555
5+`554"
^25++W#
^25++W5/
54%555555
5#`554
^25++W0
554%555555
50`554
^25++W+
]25++W5/
54%555555
5+`554
_25++W#
_25++W5/
5554%555555
5#`554
_25++W0
4%555555
50`554
_25++W+
\25++W5/
5554%555555
5+`554"
[25++W'
[25++W5/
5554%555555
5'`554
[25++W0
4%555555
50`554
[25++W+
Z25++W5/
5554%555555
5+`554"
Y25++W#
55555555
Y25++W5/
5554%555555
5#`554
Y25++W0
4%555555
50`554
Y25++W+
X25++W5/
5554%555555
5+`554"
W25++W'
W25++W5/
5554%555555
5'`554
W25++W0
4%555555
50`554
W25++W+
V25++W5/
5554%555555
5+`554"
U25++W'
U25++W5/
554%555555
5'`554
U25++W0
5554%555555
50`554
U25++W+
T25++W5/
554%555555
5+`554"
S25++W+
S25++W5/
5554%555555
5+`554
S25++W0
4%555555
50`554
S25++W+
R25++W5/
5554%555555
5+`554"
Q25++W+
Q25++W5/
5554%555555
5+`554
Q25++W0
4%555555
50`554
Q25++W+
P25++W5/
5554%555555
5+`554"
O25++W*
O25++W5/
554%555555
5*`554
O25++W0
4%555555
50`554
O25++W+
N25++W5/
5554%555555
5+`554"
L25++W+
L25++W5/
5554%555555
5+`554
L25++W0
4%555555
50`554
L25++W+
K25++W5/
5554%555555
5+`554"
I25++W+
I25++W5/
5554%555555
5+`554
I25++W0
4%555555
50`554
I25++W+
H25++W5/
5554%555555
5+`554"
F25++W+
F25++W5/
5554%555555
5+`554
F25++W0
4%555555
50`554
F25++W+
E25++W5/
5554%555555
5+`554"
C25++W*
C25++W5/
554%555555
5*`554
C25++W0
4%555555
50`554
C25++W+
B25++W5/
5554%555555
5+`554
45%555
M25++W0
4%555555,,50`554
45%555
M25++W0
4%555555,,50`554
M25++W0
5554%5555,5,#50`554
45 555
M25++W+
A25++W5/
5554%555555,,5+`554
M25++W+
A25++W5/
54%5555'5,
5+`554
45%555
@25++W0
4%555555,,50`554
45%555
@25++W0
4%555555,,50`554
@25++W0
5554%5555,5,#50`554
45 555
@25++W+
?25++W5/
5554%555555,,5+`554
@25++W+
?25++W5/
54%5555'5,
5+`554
45%555
J25++W0
4%555555,,50`554
45%555
J25++W0
4%555555,,50`554
J25++W0
5554%5555,5,#50`554
45 555
J25++W+
>25++W5/
5554%555555,,5+`554
J25++W+
>25++W5/
54%5555'5,
5+`554
45%555155$3
G25++W0
4%555555,,50`554
45%555155$3
G25++W0
4%555555,,50`554
555155$1
G25++W0
5554%5555,5,#50`554
45 555155$3
G25++W+
=25++W5/
5554%555555,,5+`554
555155$1
G25++W+
=25++W5/
54%5555'5,
5+`554
45$555
D25++W/
5554%555555,,5/`554
45%555
D25++W0
4%555555,,50`554
D25++W0
5554%5555,5,#50`554
45 555
D25++W+
<25++W5/
5554%555555,,5+`554
D25++W+
<25++W5/
54%5555'5,
5+`554"
Q#27 /55
35++W(
5554%555555++5(`554
35$555
35++W0
5554%555555++50`554
35555
35++W+
35++W5/
554%555555++5+`554
35++W*
35++W5/
54%555555++5*`554"
35 555
+#57 /55
+#57 /55
35555
+#57 /55
35++W(
5554%555555++5(2554
35$555
35++W0
5554%555555++502554
35++W*
35++W5/
54%555555++5*2554
55$123
54%555555$$5)2554
55$023
54%555555$$5)2554
55$023
5554%555555$$5#2554
35#555
554%555555**502554
35++W5/
5554%555555**5)2554"
55$&5#57 /55
r45++3
*45+)/-
5554%5535(5
5+5555
r45++3
)15+)/2-
54%5535(5
5+5555"
55$2+*
55$1+*
55$2+*
55$1+*
!15++3
`5517/
55555553
55555553
`5517/
`5517/
25Y555
(45++3/
r45++*)
45+(,
R.5/+/2
45+/7/Q.5/
55$2+*
(45+%5.
555.55$32
'15++/
55$31
555.55$32
15++/
55$31
25+*/.
15++/3
15+W+/
4%5535-5,$5+5555
15++/3
15+W+/
5554%5535(5,5+5555"
F45++/
r45+*)
05/)-/
15++3*)
45+(/,
55$3#5
15+*W+/
554%5535$5,
5+5555"
555.55$3
555.55$3
r45++*
r45++*
r45++*
r45++*
r45++*
55555553
`5517/
55555553
`5517/
55555553
`5517/
55555553
`5517/
55555553
`5517/
55555553
`5517/
55555553
`5517/
55555553
`5517/
r45++*
r45++*
r45++*
25+555.55$32#5
15++32
25+555.55$32#5
15++32
25+555.55$32#5
r45++3
15+*32
15+"1,
25+555.55$32#5
r45++3
15+*32
15+"1,
25+555.55$32#5
15L555
_55532
m55532
r45++*)/32
15+"1,
25+555.55$32#5
r45++2*)
25+555.55$32#5
r45++*)(2"1
15+"0$1
25+555.55$32#5
r45++2*
I5553.
15553555355535553555
25+555.55$32#5
15++32
25+555.55$32#5
r45++3
25+555.55$32#5
r45++3
25+555.55$32#5
r45++3
25+555.55$32#5
r45++3
25+555.55$32#5
259455
555321
25+555.55$32#5
r45++2*)
55$1+*
55$1+*
!3#37/55
35&555
45++#53
35&555
45++#53
35&555
35++#53
35&555
35++#53
55$e/55
15+)/("1
b."/"1
"1$1$/
d3"-"1
555$-$1
15+"+/("*
")$+$)
15+$)$,
e."/"*
"($+$(
15+$($,
"*$*$/
"1$1$-
P.5/+/2
$4513/7/O.5/
N.5/+/2
#4513/7/M.5/
4%5535.5,%5+5555
Antivirus Signature
Bkav W32.Common.7524DDFE
Lionic Trojan.Win32.Agent.Y!c
tehtris Clean
ClamAV Clean
FireEye Generic.mg.bf58b6afac98febc
CAT-QuickHeal Clean
ALYac Trojan.GenericKD.69446704
Malwarebytes Spyware.RedLineStealer
Zillya Clean
Sangfor Infostealer.Win32.Agent.V1wl
K7AntiVirus Riskware ( 00584baa1 )
BitDefender Trojan.GenericKD.69446704
K7GW Riskware ( 00584baa1 )
Cybereason malicious.b3f8e8
Baidu Clean
VirIT Trojan.Win32.Genus.TGU
Cyren W32/ABRisk.FOEH-6740
Symantec Trojan Horse
ESET-NOD32 a variant of Win32/Kryptik.HUSP
APEX Malicious
Paloalto Clean
Cynet Malicious (score: 100)
Kaspersky Trojan-Spy.Win32.Stealer.euxa
Alibaba TrojanSpy:Win32/Stealer.f49ca653
NANO-Antivirus Trojan.Win32.Stealer.kbeids
ViRobot Clean
MicroWorld-eScan Trojan.GenericKD.69446704
Rising Backdoor.Agent!8.C5D (TFE:1:BZinTisDkOC)
Sophos Mal/Generic-S
F-Secure Trojan.TR/Crypt.Agent.mbimb
DrWeb Trojan.PWS.RedLineNET.6
VIPRE Trojan.GenericKD.69446704
TrendMicro Trojan.Win32.AMADEY.YXDIWZ
McAfee-GW-Edition Artemis!Trojan
Trapmine malicious.high.ml.score
CMC Clean
Emsisoft Trojan.GenericKD.69446704 (B)
Ikarus Trojan.Qakbot
GData Trojan.GenericKD.69446704
Jiangmin Clean
Webroot W32.Trojan.GenKD
Avira TR/Crypt.Agent.mbimb
MAX malware (ai score=88)
Antiy-AVL Trojan/Win32.Sabsik
Kingsoft Win32.Troj.Generic.v
Gridinsoft Malware.Win32.RedLine.bot
Xcitium Malware@#30n3dhrj4hb6i
Arcabit Trojan.Generic.D423AC30
SUPERAntiSpyware Clean
ZoneAlarm Trojan-Spy.Win32.Stealer.euxa
Microsoft Trojan:Win32/RedLine.RDDI!MTB
Google Detected
AhnLab-V3 Trojan/Win.PWSX-gen.C5493283
Acronis Clean
BitDefenderTheta Gen:NN.ZexaF.36722.zyY@a4TN2mni
TACHYON Clean
DeepInstinct MALICIOUS
VBA32 TrojanPSW.RedLine
Cylance unsafe
Panda Trj/CI.A
Zoner Clean
TrendMicro-HouseCall Trojan.Win32.AMADEY.YXDIWZ
Tencent Malware.Win32.Gencirc.13f05a6c
Yandex Trojan.Kryptik!dYWTXrGLlrU
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.218662960.susgen
Fortinet PossibleThreat.MU
AVG Win32:PWSX-gen [Trj]
Avast Win32:PWSX-gen [Trj]
CrowdStrike win/malicious_confidence_100% (W)
No IRMA results available.