popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

FONTQRY32.exe

Generic Malware Malicious Library UPX PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 June 20, 2024, 7:44 p.m. June 20, 2024, 7:44 p.m.
Size 83.6KB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 aa20ff0db8694e6fd98760cb00c1bf74
SHA256 c090dafc961f938a3d71cce7734366cada620926e99f372dd392f841a0996fef
CRC32 5D40D3C8
ssdeep 1536:wx3UK2B44dsCTbHPZezjQfHsQVQg7xzOGcwB7q8TUawK75RpIx8xP:i3UK2rs4bvZezjQfHsQVQg7xzOGL7q8p
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .00cfg
section .retplne
Bkav W64.AIDetectMalware