popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

66bdd24d2ac1b_uninstaller.exe

Generic Malware Malicious Library UPX ftp PE File OS Processor Check PE32
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Aug. 19, 2024, 2:07 p.m. Aug. 19, 2024, 3:47 p.m.
Size 5.5MB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 fdf999d19df6b5c6a03bdbe1990347b3
SHA256 7a15dd944f05b7280ae9d297f7707f5ee712821fbae770930bae1539cf9e0b4e
CRC32 5D4B88C2
ssdeep 49152:rqmTkde4P2b+2vj3DydOPF+ins3aliOhu+WB+QlpNjeykwUZFuGlilvPm4upzD6L:rqmQde4n2b3lwJKliN8svuQWu
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • ftp_command - ftp command
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

resource name AFX_DIALOG_LAYOUT
resource name FILE
resource name LNG
Bkav W32.AIDetectMalware
ALYac Trojan.GenericKD.73849501
Cylance Unsafe
VIPRE Trojan.GenericKD.73849501
BitDefender Trojan.GenericKD.73849501
Kaspersky HEUR:Trojan-PSW.Win32.Stealer.gen
MicroWorld-eScan Trojan.GenericKD.73849501
Emsisoft Trojan.GenericKD.73849501 (B)
TrendMicro Trojan.Win32.SMOKELOADER.YXEHPZ
McAfeeD ti!7A15DD944F05
FireEye Trojan.GenericKD.73849501
Sophos Mal/Generic-S
MAX malware (ai score=80)
Antiy-AVL Trojan[PSW]/Win32.Stealer
Microsoft Trojan:Win32/Wacatac.B!ml
ZoneAlarm HEUR:Trojan-PSW.Win32.Stealer.gen
GData Trojan.GenericKD.73849501
TrendMicro-HouseCall Trojan.Win32.SMOKELOADER.YXEHPZ
MaxSecure Trojan.Malware.73788987.susgen