popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2010-04-15 07:06:53

PE Imphash

b4c6fff030479aa3b12625be67bf4914

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000104e 0x00001200 0.168100494025
.rdata 0x00003000 0x00000084 0x00000200 0.963086734599
.lhjl 0x00004000 0x00000278 0x00000400 4.30108387761

Imports

Library KERNEL32.dll:
0x140003000 VirtualAlloc
0x140003008 ExitProcess
!This program cannot be run in DOS mode.
Rich}E
`.rdata
@.lhjl
PAYLOAD:
ExitProcess
VirtualAlloc
KERNEL32.dll
AQAPRQH1
AX^YZAXAYAZH
ws2_32
A^PPM1
}(XAWYh
KERNEL32.dll
VirtualAlloc
ExitProcess
Antivirus Signature
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.Metasploit.4!c
tehtris Clean
ClamAV Win.Malware.Metasploit-10022275-0
CMC Clean
CAT-QuickHeal HackTool.Metasploit.S9212471
Skyhigh BehavesLike.Win64.Infected.zz
ALYac Trojan.Metasploit.A
Cylance Unsafe
Zillya Clean
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Trojan ( 004fae881 )
Alibaba Trojan:Win32/CobaltStrike.5f03
K7GW Trojan ( 004fae881 )
Cybereason malicious.bf2b35
huorong Backdoor/Meterpreter.fb
Baidu Clean
VirIT Trojan.Win32.Generic.BZPS
Paloalto generic.ml
Symantec Meterpreter
Elastic Windows.Trojan.Metasploit
ESET-NOD32 a variant of Win64/Rozena.M
APEX Malicious
Avast Win32:MsfShell-V [Hack]
Cynet Malicious (score: 100)
Kaspersky HEUR:Trojan.Win64.Packed.gen
BitDefender Trojan.Metasploit.A
NANO-Antivirus Clean
ViRobot Trojan.Win.Z.Metasploit.7168.FCN
MicroWorld-eScan Trojan.Metasploit.A
Tencent Hacktool.Win64.Rozena.a
TACHYON Clean
Sophos ATK/Meter-A
F-Secure Trojan.TR/Crypt.XPACK.Gen7
DrWeb BackDoor.Shell.244
VIPRE Trojan.Metasploit.A
TrendMicro Clean
McAfeeD Real Protect-LS!CA6AE34BF2B3
Trapmine malicious.high.ml.score
FireEye Generic.mg.ca6ae34bf2b35aac
Emsisoft Trojan.Metasploit.A (B)
Ikarus Trojan.Win64.Meterpreter
GData Win32.Backdoor.Rozena.SGQFVT
Jiangmin Trojan.Generic.auyjj
Webroot W32.Trojan.Gen
Varist W64/Rozena.IG
Avira TR/Crypt.XPACK.Gen7
Antiy-AVL GrayWare/Win32.Rozena.j
Kingsoft Win64.Trojan.Packed.gen
Gridinsoft Trojan.Win64.Gen.tr
Xcitium Clean
Arcabit Trojan.Metasploit.A
SUPERAntiSpyware Trojan.Agent/Gen-MalPack
ZoneAlarm HEUR:Trojan.Win64.Packed.gen
Microsoft Trojan:Win64/Metasploit!pz
Google Detected
AhnLab-V3 Trojan/Win32.RL_Generic.R357794
Acronis suspicious
McAfee Trojan-FJIN!CA6AE34BF2B3
MAX malware (ai score=80)
VBA32 Clean
Malwarebytes Trojan.Dropper.Generic
Panda Trj/CI.A
Zoner Probably Heur.ExeHeaderL
TrendMicro-HouseCall Clean
Rising Trojan.Kryptik/x64!1.A2F4 (CLASSIC)
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Clean
Fortinet W64/Rozena.J!tr
BitDefenderTheta Clean
AVG Win32:MsfShell-V [Hack]
DeepInstinct MALICIOUS
CrowdStrike win/malicious_confidence_100% (D)
alibabacloud Trojan:Win/Rozena.E
No IRMA results available.