popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

4.exe

PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Jan. 10, 2024, 9:24 a.m. Jan. 10, 2024, 9:26 a.m.
Size 579.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 913edccd8dd523f0c257a7f55598a19f
SHA256 d0088d5fbd159e1d0c51bd9a069382acb3d246a5f94bcd19bcd32897b85d91c1
CRC32 65730475
ssdeep 12288:0T7jG8OlLq/5ocOqfn1/Ljga0DrW1Kmy8LABd:07tOlLMlf1/nH0mXFLAB
Yara
  • IsPE32 - (no description)
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x0005b000', u'virtual_address': u'0x00001000', u'entropy': 6.812174215441839, u'name': u'.text', u'virtual_size': u'0x0005af97'} entropy 6.81217421544 description A section with a high entropy has been found
section {u'size_of_data': u'0x00020600', u'virtual_address': u'0x00060000', u'entropy': 7.2490931979937, u'name': u'.data', u'virtual_size': u'0x00021968'} entropy 7.24909319799 description A section with a high entropy has been found
entropy 0.853068280035 description Overall entropy of this PE file is high
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Zload.a!c
Elastic malicious (high confidence)
MicroWorld-eScan Gen:Heur.Mint.Zard.25
Skyhigh BehavesLike.Win32.Generic.hc
McAfee Artemis!913EDCCD8DD5
Malwarebytes Trojan.MalPack.RND
Sangfor Downloader.Win32.Zload.Ve9i
K7AntiVirus Trojan ( 005b025b1 )
Alibaba TrojanDownloader:Win32/Zload.6d6e513c
K7GW Trojan ( 005b025b1 )
Cybereason malicious.d5e662
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Spy.Agent.QLD
Cynet Malicious (score: 100)
APEX Malicious
Kaspersky HEUR:Trojan-Downloader.Win32.Zload.vho
BitDefender Gen:Heur.Mint.Zard.25
Avast Win32:CrypterX-gen [Trj]
Tencent Win32.Trojan-Downloader.Zload.Qimw
Sophos Mal/Generic-S
F-Secure Trojan.TR/Crypt.XPACK.Gen
VIPRE Gen:Heur.Mint.Zard.25
TrendMicro TrojanSpy.Win32.LUMMASTEALER.YXEAIZ
Emsisoft Gen:Heur.Mint.Zard.25 (B)
Ikarus Trojan-Spy.Win32.Agent
Avira TR/Crypt.XPACK.Gen
Antiy-AVL Trojan/Win32.GenKryptik
Kingsoft malware.kb.a.996
Microsoft Trojan:Win32/Sabsik.FL.B!ml
Arcabit Trojan.Mint.Zard.25
ZoneAlarm HEUR:Trojan-Downloader.Win32.Zload.vho
GData Gen:Heur.Mint.Zard.25
Google Detected
AhnLab-V3 Trojan/Win.Generic.C5571782
BitDefenderTheta AI:Packer.6E73ABD61E
Cylance unsafe
Panda Trj/GdSda.A
TrendMicro-HouseCall TrojanSpy.Win32.LUMMASTEALER.YXEAIZ
Rising Downloader.Zload!8.118E0 (TFE:5:Md2PASAtvEH)
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/GenKryptik.GSHU!tr
AVG Win32:CrypterX-gen [Trj]
DeepInstinct MALICIOUS
CrowdStrike win/malicious_confidence_100% (W)