popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Extension__Installer.exe

Malicious Library PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 17, 2024, 7:34 a.m. April 17, 2024, 7:34 a.m.
Size 295.0KB
Type PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
MD5 c6eb4207ca47cc818762e65b72946aad
SHA256 852ac38e42d2d6999c5e583e50c76348343c021859b98ba61ea5a6af931be841
CRC32 D353CE79
ssdeep 6144:Z7Utp57JgcC9umP9mQwFpaSPBu+opYh/MLlRjdV55Y14PLckdK:a7Ydfbe8uBuhpk/wd5HjVg
PDB Path C:\Users\weckb\source\repos\Extension Installer\Extension Installer\obj\x64\Release\Extension Installer.pdb
Yara
  • IsPE64 - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path C:\Users\weckb\source\repos\Extension Installer\Extension Installer\obj\x64\Release\Extension Installer.pdb