popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis
Gen1 Generic Malware Malicious Library UPX PE File DLL OS Processor Check PE32
  1. Resubmit sample
Category Machine Started Completed
ARCHIVE s1_win7_x6401 Aug. 17, 2024, 11:08 p.m. Aug. 17, 2024, 11:08 p.m.

Archive Office 2013-2024 C2R Install - Install Lite 7.7.7.5 x64/files/x86/msvcr100.dll @ Office 2013-2024 C2R Install - Install Lite 7.7.7.5 x64.zip

Summary

Size 755.8KB
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 bf38660a9125935658cfa3e53fdc7d65
SHA1 0b51fb415ec89848f339f8989d323bea722bfd70
SHA256 60c06e0fa4449314da3a0a87c1a9d9577df99226f943637e06f61188e5862efa
SHA512
25f521ffe25a950d0f1a4de63b04cb62e2a3b0e72e7405799586913208bf8f8fa52aa34e96a9cc6ee47afcd41870f3aa0cd8289c53461d1b6e792d19b750c9a1
CRC32 14EE1F12
ssdeep 12288:yMmCy3nAgPAxN9ueqix/HEmxsvGrif8ZSy+rdQw2QRAtd74/vmYK6H3BV0eAI:dmCy3KxW3ixPEmxsvGrm8Z6r+JQPzV4I
PDB Path msvcr100.i386.pdb
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • IsDLL - (no description)
  • Win32_Trojan_Gen_1_0904B0_Zero - Win32 Trojan Emotet
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path msvcr100.i386.pdb
section {u'size_of_data': u'0x000b1400', u'virtual_address': u'0x00001000', u'entropy': 6.909032342580464, u'name': u'.text', u'virtual_size': u'0x000b1221'} entropy 6.90903234258 description A section with a high entropy has been found
entropy 0.946595460614 description Overall entropy of this PE file is high