popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

9009.exe

UPX PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Aug. 26, 2024, 9:13 a.m. Aug. 26, 2024, 9:27 a.m.
Size 262.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 644a43fda332b29e94af26722ee4a836
SHA256 803fe3b2d32cc2e6bf37a8c2e87d32f2d0974899452c2b9771fa305f8cb79162
CRC32 2A3D7AB7
ssdeep 6144:MlTGwbV/tXxUx3QP8ietxbs0o+3Xynmthk83IUgtmxDo:mbV/tXeePETO/8fgt
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Bkav W32.AIDetectMalware
Elastic malicious (high confidence)
Cynet Malicious (score: 100)
Skyhigh BehavesLike.Win32.Generic.dh
Cylance Unsafe
VIPRE Gen:Heur.Mint.Zard.25
BitDefender Gen:Heur.Mint.Zard.25
Cybereason malicious.da332b
Arcabit Trojan.Mint.Zard.25
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Spy.LummaStealer.B
APEX Malicious
Avast Win32:Lumma-F [Pws]
ClamAV Win.Packed.Lazy-10033561-0
NANO-Antivirus Virus.Win32.Gen.ccmw
MicroWorld-eScan Gen:Heur.Mint.Zard.25
Rising Spyware.LummaStealer!8.1A464 (TFE:5:sn34Jkd5kBP)
Emsisoft Gen:Heur.Mint.Zard.25 (B)
F-Secure Trojan.TR/Crypt.XPACK.Gen
McAfeeD Real Protect-LS!644A43FDA332
Trapmine malicious.high.ml.score
FireEye Generic.mg.644a43fda332b29e
SentinelOne Static AI - Suspicious PE
Google Detected
Avira TR/Crypt.XPACK.Gen
MAX malware (ai score=82)
Antiy-AVL Trojan[Spy]/Win32.LummaStealer
Kingsoft malware.kb.a.989
Microsoft Trojan:Win32/Wacatac.B!ml
GData Gen:Heur.Mint.Zard.25
AhnLab-V3 Trojan/Win.Generic.R661462
BitDefenderTheta AI:Packer.104EA6951E
VBA32 BScope.TrojanPSW.Lumma
Malwarebytes Spyware.Lumma
huorong TrojanSpy/LummaStealer.d
MaxSecure Trojan.Malware.300983.susgen
Fortinet W32/LummaStealer.B!tr.spy
AVG Win32:Lumma-F [Pws]