popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

notepad%2B%2B.exe

Generic Malware Malicious Library UPX Malicious Packer PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Sept. 30, 2024, 9:25 a.m. Sept. 30, 2024, 9:27 a.m.
Size 731.6KB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 66f6521903ee28b6b236aba545aaf5ef
SHA256 16203767f543bdbb147fa655679ddba9711d6e20b54da86614c06fa9ac499cc1
CRC32 2A14A5EA
ssdeep 12288:jCITrlFPZFdwIcyornBXS0XjwiTvWxuO6ADtxIVQzUYX8VFDX:j/vPZFdrSnU0Miz7O6AR+ywYIZ
PDB Path project.pdb
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path project.pdb
section {u'size_of_data': u'0x00056000', u'virtual_address': u'0x0002f000', u'entropy': 7.46251670505056, u'name': u'.rdata', u'virtual_size': u'0x00055eba'} entropy 7.46251670505 description A section with a high entropy has been found
entropy 0.478109798471 description Overall entropy of this PE file is high
Bkav W64.AIDetectMalware
Lionic Adware.Win32.Generic.2!c
Elastic malicious (high confidence)
Cynet Malicious (score: 99)
ALYac Gen:Variant.Adware.Johnnie.273941
VIPRE Gen:Variant.Adware.Johnnie.273941
Sangfor Adware.Win64.Agent.Vjte
K7AntiVirus Trojan ( 005b862c1 )
BitDefender Gen:Variant.Adware.Johnnie.273941
K7GW Trojan ( 005b862c1 )
Arcabit Trojan.Adware.Johnnie.D42E15
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win64/Agent.EFI
McAfee Artemis!66F6521903EE
Avast Win64:MalwareX-gen [Trj]
Alibaba Trojan:Win64/MalwareX.db48cc09
MicroWorld-eScan Gen:Variant.Adware.Johnnie.273941
Rising Trojan.Agent!8.B1E (TFE:5:gons7qdxEPE)
Emsisoft Gen:Variant.Adware.Johnnie.273941 (B)
F-Secure Trojan.TR/AVI.Agent.lpmku
McAfeeD ti!16203767F543
FireEye Generic.mg.66f6521903ee28b6
Sophos Mal/Generic-S
SentinelOne Static AI - Suspicious PE
Google Detected
Avira TR/AVI.Agent.lpmku
MAX malware (ai score=64)
Microsoft Trojan:Win32/Wacatac.B!ml
GData Gen:Variant.Adware.Johnnie.273941
Varist W64/ABAdware.AIVV-5781
AhnLab-V3 Adware/Win.Johnnie.R659972
DeepInstinct MALICIOUS
Malwarebytes Malware.AI.922230826
Ikarus Trojan.Win64.Agent
TrendMicro-HouseCall TROJ_GEN.R002H09H124
Tencent Trojan.Win64.Kryptik.cc
MaxSecure Trojan.Malware.300983.susgen
Fortinet Adware/Agent
AVG Win64:MalwareX-gen [Trj]
Paloalto generic.ml
CrowdStrike win/malicious_confidence_70% (W)