popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

AntiVirus2.exe

PE32 PE File .NET EXE
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us July 15, 2024, 9:19 a.m. July 15, 2024, 9:19 a.m.
Size 835.5KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 e81179996dbd2490c45ca13d80eae0a8
SHA256 b2f6cb7e498e7d05ff872d1940837ab0db8ae0b538671c97258f8b8dddb4937e
CRC32 0268179E
ssdeep 12288:Hj3ptnceM9h2pAWjf0ccrNSEZzKTKrRh34+mhoNwNmFaLvULAHFsxet/gymlMrXY:H1tncB9IbQccr8E8TomhGwQaKF8I3MU
Yara
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x000d0400', u'virtual_address': u'0x00002000', u'entropy': 7.999418501981819, u'name': u'.text', u'virtual_size': u'0x000d0368'} entropy 7.99941850198 description A section with a high entropy has been found
entropy 0.997604790419 description Overall entropy of this PE file is high
Bkav W32.AIDetectMalware.CS
Lionic Trojan.Win32.NanoBot.m!c
Elastic malicious (high confidence)
CAT-QuickHeal Backdoor.MSIL
Skyhigh BehavesLike.Win32.Generic.cc
ALYac Gen:Variant.Jalapeno.12513
Cylance Unsafe
VIPRE Gen:Variant.Jalapeno.12513
Sangfor Backdoor.Msil.Kryptik.Vadl
K7AntiVirus Trojan ( 005b33841 )
BitDefender Gen:Variant.Jalapeno.12513
K7GW Trojan ( 005b33841 )
Cybereason malicious.96dbd2
Arcabit Trojan.Jalapeno.D30E1
VirIT Trojan.Win32.MSIL_Heur.A
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of MSIL/Kryptik.ALFN
APEX Malicious
McAfee Artemis!E81179996DBD
Avast Win32:CrypterX-gen [Trj]
Kaspersky HEUR:Backdoor.MSIL.NanoBot.gen
Alibaba Backdoor:MSIL/PureLogStealer.4e89c0c5
MicroWorld-eScan Gen:Variant.Jalapeno.12513
Rising Malware.Obfus/MSIL@AI.100 (RDM.MSIL2:5DPzw2ghyOQM+iyvyLvxdQ)
Emsisoft Gen:Variant.Jalapeno.12513 (B)
F-Secure Trojan.TR/Dropper.Gen
DrWeb Trojan.PWS.Siggen3.37585
Zillya Backdoor.NanoBot.Win32.2
TrendMicro TROJ_GEN.R002C0DFL24
McAfeeD Real Protect-LS!E81179996DBD
FireEye Generic.mg.e81179996dbd2490
Sophos Mal/Generic-S
Ikarus Trojan.MSIL.Crypt
Google Detected
Avira TR/Dropper.Gen
MAX malware (ai score=88)
Kingsoft MSIL.Backdoor.NanoBot.gen
Xcitium Malware@#34lfatag8zfo1
Microsoft Trojan:MSIL/PureLogStealer.PCAA!MTB
ViRobot Trojan.Win.Z.Nanobot.855552
ZoneAlarm HEUR:Backdoor.MSIL.NanoBot.gen
GData Gen:Variant.Jalapeno.12513
Varist W32/MSIL_Agent.IGR.gen!Eldorado
AhnLab-V3 Trojan/Win.Generic.C5630360
BitDefenderTheta Gen:NN.ZemsilF.36808.0m0@a09MHEj
DeepInstinct MALICIOUS
VBA32 TScope.Trojan.MSIL
Malwarebytes Spyware.PasswordStealer
Panda Trj/GdSda.A
TrendMicro-HouseCall TROJ_GEN.R002C0DFL24