Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.24 06:09
cpuz.exe
09.24 06:09
SSD-Z.exe
09.24 01:09
GoogleUpdate.exe
09.24 01:09
ufw.exe
09.24 01:09
lgrn.exe
09.24 01:09
lgfjd.exe
09.24 01:09
otra.exe
09.24 01:09
66f16f7e683b4_Trippers...
09.24 01:09
1.txt.ps1
09.24 11:09
66f18a5501651_ww_a.exe

Latest News
09.24 07:09
PASCON 2024, 하반기 최대 사이...
09.24 07:09
[사전규격공개] 2025년 블록체인 지원...
09.24 07:09
Web tracking report: w...
09.24 07:09
Introducing Safebrowsi...
09.24 07:09
How Machine Learning i...
09.24 07:09
Turkey Shelves Plans t...
09.24 07:09
House bill pitches int...
09.24 07:09
Cybersecurity Threats:...
09.24 07:09
Prince William to Pick...
09.24 07:09
Grammarly Adds New CFO...

Summary | ZeroBOX

Blaze_combat.exe

Generic Malware Malicious Library UPX Malicious Packer PE64 PE File OS Processor Check

Category	Machine	Started	Completed
FILE	s1_win7_x6401	April 1, 2024, 7:33 a.m.	April 1, 2024, 7:49 a.m.

Size	38.5MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`c9e887a8ed0014744d5f59ef07327175`
SHA256	`eff129dc01f2292d4306c80c976e6bda34e08763497758b92d34b6cc1db0b667`
CRC32	`41893F7F`
ssdeep	`393216:wQgHDlanaGBXvDKtz+bhPWES4tiNQPNrIKc4gaPbUAgrO4mgh96l+ZArYsFRljSa:w3on1HvSzxAMNhFZArYs+dgCmxx5cs`
PDB Path	C:\Users\runneradmin\AppData\Local\Temp\pkg.3fcc969acc52617e676dcbbb\node\out\Release\node.pdb
Yara	IsPE64 - (no description) Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

This executable has a PDB path (1 event)

pdb_path

C:\Users\runneradmin\AppData\Local\Temp\pkg.3fcc969acc52617e676dcbbb\node\out\Release\node.pdb

The executable contains unknown PE section names indicative of a packer (could be a false positive) (1 event)

section

_RDATA