popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

huor.exe

Generic Malware Malicious Library UPX Malicious Packer PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 July 11, 2024, 1:22 p.m. July 11, 2024, 1:35 p.m.
Size 13.7MB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 5e808b04b297038cd01c378fb1beb6ee
SHA256 d08aa043d2107615285db96740c02a558fb2cd338f01331d471c162d6ef6fb57
CRC32 CDA39050
ssdeep 196608:wo68bulDvOmbhu+Js9PFGrSZIOdfa1X0Kx:I+wuz9PFGWoR0K
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .symtab
section {u'size_of_data': u'0x000d9c00', u'virtual_address': u'0x009b1000', u'entropy': 7.9956749759277255, u'name': u'/19', u'virtual_size': u'0x000d9b46'} entropy 7.99567497593 description A section with a high entropy has been found
section {u'size_of_data': u'0x0002b400', u'virtual_address': u'0x00a8b000', u'entropy': 7.941510334875773, u'name': u'/32', u'virtual_size': u'0x0002b296'} entropy 7.94151033488 description A section with a high entropy has been found
section {u'size_of_data': u'0x00179c00', u'virtual_address': u'0x00ab8000', u'entropy': 7.998754476368338, u'name': u'/65', u'virtual_size': u'0x00179bd6'} entropy 7.99875447637 description A section with a high entropy has been found
section {u'size_of_data': u'0x00101400', u'virtual_address': u'0x00c32000', u'entropy': 7.995732582251606, u'name': u'/78', u'virtual_size': u'0x00101355'} entropy 7.99573258225 description A section with a high entropy has been found
section {u'size_of_data': u'0x0004da00', u'virtual_address': u'0x00d34000', u'entropy': 7.814521456172196, u'name': u'/90', u'virtual_size': u'0x0004d8e1'} entropy 7.81452145617 description A section with a high entropy has been found
entropy 0.2771886121 description Overall entropy of this PE file is high
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.Generic.4!c
Elastic Multi.Generic.Threat
Sangfor Trojan.Win32.Agent.Vcnt
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of WinGo/PSW.Agent.FO
McAfee Artemis!5E808B04B297
Avast Win64:Evo-gen [Trj]
Kaspersky Trojan-PSW.Win64.BroPass.csl
Alibaba Trojan:Win32/HackBrowser.8862
McAfeeD ti!D08AA043D210
Sophos Generic Reputation PUA (PUA)
Ikarus Trojan-PSW.Agent
Google Detected
Microsoft Trojan:Win32/Malgent!MSR
ZoneAlarm Trojan-PSW.Win64.BroPass.csl
GData Win64.Trojan.Agent.FARI0K
AhnLab-V3 Malware/Win.Generic.R643960
DeepInstinct MALICIOUS
Malwarebytes Malware.AI.2738830890
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/Agent.FO!tr.pws
AVG Win64:Evo-gen [Trj]
Paloalto generic.ml
CrowdStrike win/grayware_confidence_60% (D)
alibabacloud Hacktool:Multi/HackBrowserData