popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

1970-01-01 09:00:00

PE Imphash

f34d5f2d4577ed6d9ceec516c1f5a744

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00002000 0x00000524 0x00000600 4.22379950567
.rsrc 0x00004000 0x000002d8 0x00000400 2.31060695216
.reloc 0x00006000 0x0000000c 0x00000200 0.0776331623432

Resources

Name Offset Size Language Sub-language File type
RT_VERSION 0x00004058 0x00000280 LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library mscoree.dll:
0x402000 _CorExeMain
!This program cannot be run in DOS mode.
`.rsrc
@.reloc
v4.0.30319
#Strings
<Module>
HttpWebRequest
System.Net
WebRequest
Create
HttpWebResponse
GetResponse
WebResponse
GetResponseStream
Stream
System.IO
StreamReader
TextReader
ReadToEnd
PowerShell
System.Management.Automation
AddScript
Invoke
Collection`1
System.Collections.ObjectModel
PSObject
Object
System
RuntimeCompatibilityAttribute
System.Runtime.CompilerServices
mscorlib
ezil.exe
WrapNonExceptionThrows
_CorExeMain
mscoree.dll
http://146.190.72.88:8080/page.php
VS_VERSION_INFO
VarFileInfo
Translation
StringFileInfo
007f04b0
Comments
CompanyName
FileDescription
FileVersion
0.0.0.0
InternalName
LegalCopyright
LegalTrademarks
OriginalFilename
ezil.exe
ProductName
ProductVersion
Antivirus Signature
Bkav W32.AIDetectMalware.CS
Lionic Trojan.Win32.Alien.4!c
tehtris Clean
ClamAV Clean
CMC Clean
CAT-QuickHeal Clean
Skyhigh BehavesLike.Win32.TrojanVeil.zz
ALYac Gen:Variant.MSILHeracles.68261
Cylance Unsafe
Zillya Clean
Sangfor Trojan.Msil.Agent.V34k
K7AntiVirus Clean
Alibaba Trojan:MSIL/Alien.5de1c849
K7GW Clean
Cybereason malicious.b761bf
Baidu Clean
VirIT Clean
Paloalto generic.ml
Symantec Trojan.Gen.MBT
Elastic malicious (high confidence)
ESET-NOD32 a variant of MSIL/TrojanDownloader.Tiny.CCC
APEX Malicious
Avast Win32:TrojanX-gen [Trj]
Cynet Clean
Kaspersky HEUR:Trojan.MSIL.Alien.gen
BitDefender Gen:Variant.MSILHeracles.68261
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan Gen:Variant.MSILHeracles.68261
Tencent Msil.Trojan.Alien.Pjgl
TACHYON Clean
Sophos Mal/Generic-S
F-Secure Trojan.TR/Dldr.Tiny.tixng
DrWeb Clean
VIPRE Gen:Variant.MSILHeracles.68261
TrendMicro Clean
McAfeeD ti!19F5924335F5
Trapmine malicious.moderate.ml.score
FireEye Generic.mg.b1dccf5b761bfef5
Emsisoft Gen:Variant.MSILHeracles.68261 (B)
huorong TrojanDownloader/MSIL.Small.dx
GData Gen:Variant.MSILHeracles.68261
Jiangmin Clean
Webroot Clean
Varist Clean
Avira TR/Dldr.Tiny.tixng
Antiy-AVL Clean
Kingsoft MSIL.Trojan.Alien.gen
Gridinsoft Trojan.Win32.Downloader.sa
Xcitium Clean
Arcabit Trojan.MSILHeracles.D10AA5
SUPERAntiSpyware Clean
ZoneAlarm HEUR:Trojan.MSIL.Alien.gen
Microsoft Trojan:Win32/Wacatac.B!ml
Google Detected
AhnLab-V3 Clean
Acronis Clean
McAfee Artemis!B1DCCF5B761B
MAX malware (ai score=84)
VBA32 Clean
Malwarebytes Generic.Malware/Suspicious
Panda Trj/CI.A
Zoner Clean
TrendMicro-HouseCall TROJ_GEN.R002H0CHA24
Rising Downloader.Tiny!8.245 (CLOUD)
Yandex Clean
Ikarus Trojan-Downloader.MSIL.Tiny
MaxSecure Trojan.Malware.300983.susgen
Fortinet Clean
BitDefenderTheta Gen:NN.ZemsilF.36810.am0@a8QhtTl
AVG Win32:TrojanX-gen [Trj]
DeepInstinct MALICIOUS
CrowdStrike win/malicious_confidence_70% (W)
alibabacloud Trojan[downloader]:MSIL/Wacapew.C9nj
No IRMA results available.