popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

toolspub1.exe

UPX Malicious Library OS Processor Check PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 5, 2024, 11:37 p.m. April 5, 2024, 11:37 p.m.
Size 172.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 af2027f509b6f4b269a7249c2cd5ae4d
SHA256 5c2a928300805c6f772128556ec39f4152172ff9757e22e23bf0b89f91f0e101
CRC32 86F3C0C8
ssdeep 3072:8or9nIoq91dwPfb4Z3EtqpAQVjnHF3egebZNn7+KX:lRnIoO1d2D4ZUtqpXllugen+0
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

resource name MOTEGUB
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Mokes.m!c
Elastic malicious (high confidence)
Cylance unsafe
Sangfor Ransom.Win32.Save.a
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
APEX Malicious
Avast FileRepMalware [Pws]
Kaspersky UDS:Trojan.Win32.Strab.gen
Rising Trojan.SmokeLoader!1.F900 (CLASSIC)
Trapmine malicious.high.ml.score
FireEye Generic.mg.af2027f509b6f4b2
Sophos Mal/Generic-S
Ikarus Trojan.Win32.Krypt
Google Detected
Kingsoft malware.kb.a.999
Gridinsoft Trojan.Win32.Downloader.dd!n
Microsoft Trojan:Win32/Sabsik.FL.B!ml
ZoneAlarm UDS:Trojan.Win32.Strab.gen
BitDefenderTheta Gen:NN.ZexaF.36802.kq0@aqKAeHgG
DeepInstinct MALICIOUS
Malwarebytes Generic.Malware/Suspicious
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/Kryptik.GYGF!tr
AVG FileRepMalware [Pws]
CrowdStrike win/malicious_confidence_100% (D)