popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

orderconfirmation.exe

UPX Antivirus PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 27, 2024, 1:35 p.m. Sept. 27, 2024, 1:45 p.m.
Size 141.5KB
Type PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5 8e57b6466934631a1960ad8950b3b6e4
SHA256 ee124586c4e83ba44c2a787bd37740b6420f9caca0c70c31ca93e39926b719e9
CRC32 C887AA2B
ssdeep 3072:t22XExz86sFr15s2LcPYZylbBsdSLMIctx+:FAz8nFrzsYcvGjjt4
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • Antivirus - Contains references to security software
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section JQ71URAF
section DSJ35SY9
section D7QLMWKV
section RT35C4ID
section Y9RR93L3
section YOZON6Z6
section 8EKJPP1R
section 5P7208VM
section 7GL8QTA9
section LLZOS1N0
section DQNIRG4S
Bkav W64.AIDetectMalware
VIPRE Gen:Heur.Mint.Phil.57
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (D)
BitDefender Gen:Heur.Mint.Phil.57
Arcabit Trojan.Mint.Phil.57
Elastic malicious (high confidence)
Kaspersky HEUR:Trojan.Win64.SideWinder.gen
MicroWorld-eScan Gen:Heur.Mint.Phil.57
Emsisoft Gen:Heur.Mint.Phil.57 (B)
Trapmine malicious.high.ml.score
CTX exe.unknown.mint
Sophos ML/PE-A
SentinelOne Static AI - Malicious PE
FireEye Gen:Heur.Mint.Phil.57
Microsoft Trojan:Win32/Wacatac.B!ml
ZoneAlarm HEUR:Trojan.Win64.SideWinder.gen
GData Gen:Heur.Mint.Phil.57
DeepInstinct MALICIOUS