popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

networks_profile.exe

Gen1 Generic Malware Malicious Library UPX Anti_VM PE64 PE File OS Processor Check ZIP Format DLL
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Aug. 14, 2024, 10:50 a.m. Aug. 14, 2024, 11:01 a.m.
Size 6.6MB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 7306abcf62c8ee10a1692a6a85af9297
SHA256 37c9a26faec0bb21171b3968d2e4254f6ae10ff7ae0d0b1493226685bc5d3b4b
CRC32 CAC849D4
ssdeep 196608:p+TPoCsXDjDyf6L2WliXYrHW1LIiruQC:2PoCEDVL2ciIrHWRIiS
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

GlobalMemoryStatusEx

 1 1 0
section _RDATA
file C:\Users\test22\AppData\Local\Temp\_MEI25562\python39.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25562\VCRUNTIME140.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25562\libcrypto-1_1.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25562\libffi-7.dll
file C:\Users\test22\AppData\Local\Temp\_MEI25562\libssl-1_1.dll
Bkav W64.AIDetectMalware
Skyhigh BehavesLike.Win64.Suspicioustrojan.vc
Cylance Unsafe
FireEye Generic.mg.7306abcf62c8ee10
section {u'size_of_data': u'0x0000f200', u'virtual_address': u'0x0004b000', u'entropy': 7.356425465984462, u'name': u'.rsrc', u'virtual_size': u'0x0000f050'} entropy 7.35642546598 description A section with a high entropy has been found
entropy 0.211908931699 description Overall entropy of this PE file is high