Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.20 01:09
setup.exe
09.20 11:09
3uTools.exe
09.20 11:09
66ecb4573225b_vsbhfdg1...
09.20 10:09
66ecb452ba19c_sfbdsgfd...
09.20 10:09
66ecb44c35444_vfdhsgdf...
09.20 10:09
66ec0e61998bf_setup30.exe
09.20 10:09
66ebf725efe38_lyla.exe
09.20 10:09
Desktop_Explorer.exe
09.20 10:09
66ec3528901bb_winupdat...
09.20 10:09
Inquiry-Dubai.js

Latest News
09.20 01:09
[PASCON 2024-영상] 카스퍼스키...
09.20 01:09
2024-09-19 UNC1860 Ira...
09.20 01:09
Nvidia Teams Up With A...
09.20 12:09
[PASCON 2024-영상] 펜타린크 ...
09.20 11:09
ISC Stormcast For Frid...
09.20 11:09
2024-09-18 SAMBASPY Ja...
09.20 11:09
구립신내노인종합복지관, 지역사회와 함께 ...
09.20 11:09
자동차 부품 제조업체 쉽딱, '트리플X2...
09.20 11:09
[PASCON 2024-영상] 라온시큐어...
09.20 11:09
2024 SAO Contest: The ...

Summary | ZeroBOX

u.png

Generic Malware UPX Malicious Packer PE64 PE File OS Processor Check

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Aug. 15, 2024, 3:19 p.m.	Aug. 15, 2024, 3:22 p.m.

Size	2.8MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`ca9e2fafc81b855386aaf7a50906efa4`
SHA256	`563d3e127d92bd8b8e15ee95f7d30e950ec30d41d4cd20658f5443273eea96c7`
CRC32	`1964FD62`
ssdeep	`49152:eHm7mYKephZAXZgM82TkxR/oYqJuF5Nan4nPjzkwsRC460hOa41:eP9CKkra4`
PDB Path	untitled.pdb
Yara	PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsPE64 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

This executable has a PDB path (1 event)

pdb_path

untitled.pdb

File has been identified by 6 AntiVirus engines on VirusTotal as malicious (6 events)

Bkav	W64.AIDetectMalware
Sangfor	Trojan.Win32.Save.a
APEX	Malicious
Kaspersky	VHO:Trojan-PSW.MSIL.Agent.gen
ZoneAlarm	VHO:Trojan-PSW.MSIL.Agent.gen
CrowdStrike	win/malicious_confidence_70% (D)