popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

2020.exe

Gen1 Generic Malware Malicious Library UPX Malicious Packer Anti_VM PE64 PE File OS Processor Check ZIP Format DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 July 26, 2024, 11:57 a.m. July 26, 2024, 12:02 p.m.
Size 12.3MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 95606667ac40795394f910864b1f8cc4
SHA256 6f2964216c81a6f67309680b7590dfd4df31a19c7fc73917fa8057b9a194b617
CRC32 7028ABE8
ssdeep 393216:kzuRUAwf7vLF4NkW+eGQR6n/ikWMWfogBIv:kzuRIx1W+e5R4qPDXe
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

GlobalMemoryStatusEx

 1 1 0
file C:\Users\test22\AppData\Local\Temp\_MEI25482\python311.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25482\VCRUNTIME140.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25482\python3.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25482\libffi-8.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25482\libcrypto-3.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25482\Blsvr.exe
file C:\Users\test22\AppData\Local\Temp\_MEI25482\libssl-3.dll