popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

DSKeOWN1.exe

Generic Malware Malicious Packer PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us April 10, 2024, 1:41 p.m. April 10, 2024, 1:42 p.m.
Size 164.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 959db6fb58d86b24436a5228fdf1cd01
SHA256 b39e67fdff8dad1a8f64c0d2a01e312cdecd3d64bbedd842b01216cb09f22c65
CRC32 7BEC75A3
ssdeep 3072:UQpsjxl96J7HsLvbh4insM3eR7Tbt1iQriHdvp7tl2kUBpxYgw:UQpsjB6JQLvfsMuhPtW9vpxl2vrxi
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

resource name EXE
section {u'size_of_data': u'0x00026200', u'virtual_address': u'0x00004000', u'entropy': 7.929696321569122, u'name': u'.rsrc', u'virtual_size': u'0x00026038'} entropy 7.92969632157 description A section with a high entropy has been found
entropy 0.932721712538 description Overall entropy of this PE file is high
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Rootkit.4!c
tehtris Generic.Malware
Cynet Malicious (score: 100)
CAT-QuickHeal Trojan.Generic
Skyhigh Artemis
Cylance unsafe
VIPRE Gen:Heur.Japik.6
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (W)
BitDefender Gen:Heur.Japik.6
K7GW RootKit ( 005aee0e1 )
K7AntiVirus RootKit ( 005aee0e1 )
Arcabit Trojan.Japik.6
Symantec ML.Attribute.HighConfidence
Elastic Windows.Rootkit.R77
ESET-NOD32 a variant of Win32/Rootkit.Agent.OEM
APEX Malicious
McAfee Artemis!6ADFFA5A9C67
Avast Win32:InjectorX-gen [Trj]
ClamAV Win.Packed.Lazy-10019085-0
Kaspersky HEUR:Trojan.Win32.Generic
Alibaba Rootkit:Win32/InjectorX.0db0f0ef
NANO-Antivirus Trojan.Win32.Inject5.klcdgk
MicroWorld-eScan Gen:Heur.Japik.6
Rising Rootkit.Agent!8.F5 (TFE:3:Ma4kQLHBcuO)
Emsisoft Gen:Heur.Japik.6 (B)
F-Secure Trojan.TR/Dropper.MSIL.Gen
DrWeb Trojan.Inject5.1385
Zillya Rootkit.Agent.Win32.52080
TrendMicro TROJ_GEN.R011C0DD424
Trapmine malicious.moderate.ml.score
FireEye Generic.mg.959db6fb58d86b24
Sophos Troj/MSIL-TDK
Ikarus Trojan.MSIL.Injector
Google Detected
Avira TR/Dropper.MSIL.Gen
MAX malware (ai score=80)
Antiy-AVL Trojan/Win32.Sabsik
Kingsoft malware.kb.a.999
Gridinsoft Ransom.Win32.Sabsik.sa
Microsoft Trojan:MSIL/Zusy.KA!MTB
ZoneAlarm HEUR:Trojan.Win32.Generic
GData Gen:Heur.Japik.6
Varist W32/MSIL_Agent.HNK.gen!Eldorado
AhnLab-V3 Trojan/Win.Generic.R630595
Acronis suspicious
BitDefenderTheta Gen:NN.ZexaF.36802.kqW@a40kKkbi
DeepInstinct MALICIOUS
Malwarebytes Malware.AI.3205177420