Static | ZeroBOX

PE Compile Time

2022-09-09 10:27:01

PE Imphash

41fb8cb2943df6de998b35a9d28668e8

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00017de8 0x00017e00 6.63407926691
.itext 0x00019000 0x00000546 0x00000600 2.9337361311
.rdata 0x0001a000 0x00000492 0x00000600 3.53663597841
.data 0x0001b000 0x0000adc8 0x0000a000 7.98708102264
.pdata 0x00026000 0x00000890 0x00000a00 7.33398808052
.rsrc 0x00027000 0x0000c160 0x0000c200 4.47860990055
.reloc 0x00034000 0x00000fd0 0x00001000 6.73898724688

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x00032c80 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_GROUP_ICON 0x000330e8 0x00000076 LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library gdi32.dll:
0x41a050 SetPixel
0x41a054 SetDCBrushColor
0x41a058 SelectPalette
0x41a05c GetTextColor
0x41a060 GetDeviceCaps
0x41a064 CreateSolidBrush
Library USER32.dll:
0x41a020 DefWindowProcW
0x41a024 CreateMenu
0x41a028 EndDialog
0x41a02c GetDlgItem
0x41a030 GetKeyNameTextW
0x41a034 GetMessageW
0x41a038 GetWindowTextW
0x41a03c IsDlgButtonChecked
0x41a040 LoadImageW
0x41a044 LoadMenuW
0x41a048 DialogBoxParamW
Library KERNEL32.dll:
0x41a000 SetLastError
0x41a004 LoadLibraryW
0x41a008 GetTickCount
0x41a00c GetLastError
0x41a010 GetCommandLineW
0x41a014 GetCommandLineA
0x41a018 FreeLibrary

!This program cannot be run in DOS mode.
`.itext
`.rdata
@.data
.pdata
@.reloc
X_^ZY[
=j&&LZ66lA??~
}{))R>
f""D~**T
V22dN::t
o%%Jr..\$
&&Lj66lZ??~A
99rKJJ
==zGdd
""Df**T~
;22dV::tN
$$Hl\\
C77nYmm
%%Jo..\r
>!KK
55j_WW
&Lj&6lZ6?~A?
~=zG=d
"Df"*T~*
2dV2:tN:
x%Jo%.\r.
t>!K
a5j_5W
ggV}++
Lj&&lZ66~A??
bS11*?
Xt,,4.
RRvM;;
MMfU33
PPxD<<%
Bc!! 0
~~zG==
Df""T~**;
dV22tN::
xxJo%%\r..8$
tt>!
pp|B>>q
aaj_55
UUPx((
cccc||||wwww{{{{
kkkkoooo
gggg++++
YYYYGGGG
&&&&6666????
nnnnZZZZ
RRRR;;;;
[[[[jjjj
9999JJJJLLLLXXXX
CCCCMMMM3333
PPPP<<<<
~~~~====dddd]]]]
ssss````
""""****
2222::::
$$$$\\\\
7777mmmm
llllVVVV
eeeezzzz
xxxx%%%%....
ttttKKKK
pppp>>>>
ffffHHHH
aaaa5555WWWW
UUUU((((
BBBBhhhhAAAA
='9-6d
_jbF~T
11#?*0
,4$8_@
t\lHBW
QPeA~S
>4$8,@
p\lHtW
+HpXhE
T[$:.6
00006666
CCCCDDDD
TTTT{{{{
####====
ffff((((
vvvv[[[[
IIIImmmm
%%%%rrrr
]]]]eeee
llllppppHHHHPPPP
FFFFWWWW
kkkk::::
AAAAOOOOgggg
tttt""""
nnnnGGGG
VVVV>>>>KKKK
yyyy
YYYY''''
____````QQQQ
;;;;MMMM
ccccUUUU!!!!
.1[jP~
WVhta@
WVh4b@
WVh`b@
WVh$c@
WVhTc@
WVhhc@
WVhxc@
G Ph QB
*6t'=T+~wt =
SQRVWj
SQRVW3
_^ZY[]
_^ZY[]
_^ZY[]
_^ZY[]
SQRVW3
9D$$ua
L$ 9L$8}>
9|$0r4
T$PWSR
9|$0r4
D$PWSP
D$LEH;
+L$HRQW
+D$H[_]^
.text$mn
.itext
.idata$5
.rdata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
CreateSolidBrush
GetDeviceCaps
GetTextColor
SelectPalette
SetDCBrushColor
SetPixel
gdi32.dll
CreateMenu
DefWindowProcW
DialogBoxParamW
EndDialog
GetDlgItem
GetKeyNameTextW
GetMessageW
GetWindowTextW
IsDlgButtonChecked
LoadImageW
LoadMenuW
USER32.dll
FreeLibrary
GetCommandLineA
GetCommandLineW
GetLastError
GetTickCount
LoadLibraryW
SetLastError
KERNEL32.dll
D=\q&}
X>nf$U
h3_;40
rd>$#
Iu)?$deJ
=E~Qja
pN0jv`(
GIetpE
SwUVPh
/30Ezu
/30Ezu
\+%&~Yt~28<
dzn1#Z<
]$hpRgE
?tjh?
M'7|{-
TqJVk*#Y
LOV2lSE
>nQ}P)
m@P\>v
W:Qz|6
CzOWwl
2TRn/l
of<b&z
4GA?Wl
\\0u?D
b1R%>)
9rv0#;?
/-hYuu
zEWrt3E
KO:}]Cb4
}/,m:N:B
K KG%
V{|TS@/
,-ZeI+x
.0/Qk]
tRd DvQ
c,0WJq!
-q{2N\s07
m[ZW~M
[!NFf~
|ofCS0
yf|0$U
!zOmTi
'n[bMN
UYgaFA
yR|Go<
n.PjwD
Ls.a{U
/4OF[_7R
693My4
#37Mna
@YiEkfnA
@5AyRg
WKHXYZ
}ZcXex
>5__ef
#B>:?h
$B>:IhpykD+
bMqzUK?A
W&<|{m
-LsbviR
HjQVR#
du&P-f
ZsL.!Om
`]8Lx~D}
9BDj(6t
8xVv5g}
tj}Q0N
(kse^4w
X0!d*|P
,zXL66
"tD}:A
2_2yyPD
[AtCG!
FaB0WU
GSgP4z
:1(29E
>[@CS^^
}S]To2
c0aZ1h?
?%U$38O
6:s8&K<s+
r')v p$7X
.qXd0x
Loyn?P00
*)9IM{KP]
zDEhfWW
4IDATx
%gggfgv
o5FFFJ6P
XK@zWB
a$066Z
L;n0??
M=^r`<
[i=/(o
PAPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDINGPADDINGXXPADDING
=+>2>9>@>d>
?P?W?^?e?
0?0F0M0T0r0y0
161=1D1K1i1p1w1~1
2$3+32393s3z3
4!4(4/4i4p4w4~4
5$5u5|5
5E6L6S6Z6
;;1;7;A;
;0<B<H<R<X<j<p<z<
4!4-424>4C4O4T4`4e4q4v4
5 5,515
8+9F9r9
;;;Z;d;n;x;
040:0C0g0m0v0
13191B1Y1j1p1z1
5!5E5Y5x5
6"656Q6^6
6$727]7k7|7
<+=U=l=~=
?$?-?G?c?l?v?
4'4U4m4
6"6-676t6
8"919@9Q9}9
:!:(:4:::K:
<A<w<)=@=R=[=d=
>/?>?G?[?
011H1Z1l1
525E5Y5b5q5
7#7X7d7
:*:0:F:L:Y:_:h:
<%<-<M<R<
<2=n=t=y=
011;1d1m1
2*252B2K2m2
303M3W3
3$4-4?4J4W4`4}4
7<7_7~7
9)9;9L9
=$=c=v=
>>3>@>I>f>
0D0M0g0
1]1f1o1
3,393Q3Z3t3
4&444g4
7)7S7e7z7
88%8>8F8L8Y8d8
9&9,949
<<\<y<
=X=c=w=
>2>V>_>q>
33F3X3}3
4 444u4
4%5:5W5h5s5
6"626;6
?(?8?B?
222D2R2
4.4=4L4
949C9Q9_9
<2<;<Q<
?L?R?\?y?
G0`0z0
1J1U1t1z1
2#212;2N2[2a2
=V=\={=
1#1)1.141x1
2-2B2f2r2
6$6;6F6S6\6
7,757L7W7d7m7
9*979E9N9
<.<K<s<"=,=6=
=;>J>X>g>
2'2b2v2
2L3\3f3
4535G5Y5
:P;g;q;{;
=%=D=N=`=t=}=
?0?>?R?f?
222h2q2z2
5"5>5\5l5
5?6[6l6y6
7"7-7N7V7
8*868<8O8q8
:,:2:7:F:R:X:k:
:+;:;C;x;
?I?W?a?u?~?
071G1e1y1
6,7N7l7
9C:`:|:
=6=@=N>j>
? ?4?J?u?
@0a0x0
0!1.171@1I1R1o1u1{1
2"2-22282=2B2H2M2a2t2}2
6,6>6U6n6
7+7:7I7H8R8z8
;B<S<]<p<
<$=1=;=E=b=
>*>?>H>`>j>
4L4d4q4~4
6)6_6m6
78,8:8K8{8
;3<'=B=
?%?F?a?
1F2Q2r2
465A5b5m5
8939R9
:e:t:$;/;P;j;
>/>?>`>
?0N0]0l0
5 6E6X6a6
;&;P;_;
=->i>o>t>{>
>=?N?W?`?i?
0M0[0i0s0|0
1!1+1:1A1L1V1d1n1w1
2*2;2D2U2^2d2r2{2
3R3[3d3u3}3
4$454=4E4m4
4f5l5x5~5
((((( H
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Lockbit.tsu4
Elastic Windows.Ransomware.Lockbit
ClamAV Win.Ransomware.BlackMatter-9965914-0
CMC Clean
CAT-QuickHeal Ransom.Lockbit.S29768538
Skyhigh BehavesLike.Win32.Infected.ch
ALYac Trojan.Ransom.LockBit
Cylance unsafe
Zillya Trojan.Filecoder.Win32.26912
Sangfor Ransom.Win32.Save.LockBit30
CrowdStrike Clean
Alibaba Ransom:Win32/Lockbit.cde54798
K7GW Trojan ( 005b2d561 )
K7AntiVirus Trojan ( 005b2d561 )
Baidu Clean
VirIT Ransom.Win32.LockBit.GEN
Paloalto generic.ml
Symantec ML.Attribute.HighConfidence
tehtris Generic.Malware
ESET-NOD32 a variant of Win32/Filecoder.BlackMatter.O
APEX Malicious
Avast Win32:Evo-gen [Trj]
Cynet Malicious (score: 99)
Kaspersky UDS:DangerousObject.Multi.Generic
BitDefender Trojan.Ransom.PIC
NANO-Antivirus Virus.Win32.Gen.ccmw
ViRobot Clean
MicroWorld-eScan Trojan.Ransom.PIC
Tencent Trojan-Ransom.Win32.BlackMatter.b
TACHYON Clean
Sophos Troj/Lockbit-W
F-Secure Backdoor.BDS/ZeroAccess.Gen7
DrWeb Trojan.Encoder.38845
VIPRE Trojan.Ransom.PIC
TrendMicro Ransom_Lockbit.R06CC0DDT24
Trapmine malicious.moderate.ml.score
FireEye Generic.mg.e990e7571cdb06c5
Emsisoft Trojan.Ransom.PIC (B)
SentinelOne Static AI - Malicious PE
Jiangmin Trojan.Crypmodng.cd
Webroot W32.Ransom.Lockbit
Varist W32/ABRisk.RWUA-5217
Avira BDS/ZeroAccess.Gen7
Antiy-AVL Trojan/Win32.LockBit
Kingsoft Win32.Trojan-Ransom.Generic.a
Gridinsoft Ransom.Win32.LockBit.tr
Xcitium Clean
Arcabit Trojan.Ransom.PIC
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan-Ransom.Win32.Generic
GData Win32.Trojan-Ransom.Lockbit.QD5CJC
Google Detected
AhnLab-V3 Trojan/Win.Kryptik.R646105
Acronis Clean
McAfee GenericRXVB-PR!E990E7571CDB
MAX malware (ai score=87)
VBA32 TrojanRansom.Crypmodng
Malwarebytes Generic.Malware.AI.DDS
Panda Trj/GdSda.A
Zoner Clean
TrendMicro-HouseCall Ransom_Lockbit.R06CC0DDT24
Rising Ransom.LockBit!1.DFDC (CLASSIC)
Yandex Trojan.Filecoder!Rr0XixrjzqM
Ikarus Trojan-Ransom.LockBit
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/Conwise.RCE!tr
BitDefenderTheta AI:Packer.A674E6651E
AVG Win32:Evo-gen [Trj]
DeepInstinct MALICIOUS
alibabacloud RansomWare:Win/Lockbit.x1glab
No IRMA results available.