popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

123.exe

Malicious Packer UPX OS Processor Check PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us April 3, 2024, 7:18 a.m. April 3, 2024, 7:22 a.m.
Size 2.7MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 9f632d69a52c4076934ce5f569a675bd
SHA256 62f5be16dcf28ae6f77a753987842fc47b6c939b4cc16eeb9ed83e9eed32bf61
CRC32 624C0517
ssdeep 49152:UJrXDFN+9iEXvLqbWOqUCAu4Om/+zspq7uCsJRH:UdgQvNCsJRH
Yara
  • IsPE64 - (no description)
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Symantec ML.Attribute.HighConfidence
Kaspersky VHO:Backdoor.Win32.Agent.gen
Rising Backdoor.Agent!8.C5D (TFE:5:U13eBereYPL)
ZoneAlarm VHO:Backdoor.Win32.Agent.gen
Malwarebytes Malware.AI.529734149