popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2024-09-19 14:53:04

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00015d6c 0x00015e00 5.96268674094
.data 0x00017000 0x00000640 0x00000800 4.60589252012
.rdata 0x00018000 0x000003c0 0x00000400 6.5888331202
.edata 0x00019000 0x0000005b 0x00000200 1.03653884131
.idata 0x0001a000 0x00000014 0x00000200 0.0
.reloc 0x0001b000 0x00000b14 0x00000c00 6.43763753905

Exports

Ordinal Address Name
1 0x63849a00 DllMain@12
2 0x63852d78 Start
!This program cannot be run in DOS mode.
`.data
.rdata
@.edata
@.idata
.reloc
XZ[^_]
ZY[^_]
uB90u>
<0Zwu:
c0={,pH
c1.!T`I
AQAPRQVH1
AXAX^YZAXAYAZH
demon.x86.dll
DllMain@12
1&1-1M1
525,6h6
<3=T=r=
>9>W>w>
?2?\?{?
2F3b3v3
5-5S5b5r5
8J9a9z9
3I4k4X5m6R7
9!:f:;=
5G7T7_7o7
8+8C8W8y8
;';=;];
=3=U=w=
=!>C>e>
?1?S?u?
0A0c0
1/1Q1s1
3-3O3q3
636U6w6
6!7C7e7
818S8u8
89A9c9
:/:Q:s:
<-<O<q<
>+>D>|>
?,?I?f?
101L1`1
5F5b5~5
7U8f8Y9|9
=<=W=l=
>&>A>V>o>
?!?<?N?i?
010J0e0}0
313`3|3
304<4z4
8+8F8b8
0I1e172v2
;';@;m;
<U=m=x=
<M=b=}=
5(666D6f6
::;^;z;
<$<F<h<
=4=V=x=
>">D>f>
0-0I0k0
171:2Z2v2
6&6B6d6
868R8t8
:0:L:<;`;|;
<&<H<j<P=t=
?(?J?l?
080Z0|0
2*2L2n2
3:3\3~3
7O7h7z7
8.8I8^8v8
:M;4?]?
0$0,040<0D0L0T0\0d0l0t0|0
1d3l3t3|3
4$4,444<4D4L4T4
5$5,545<5D5L5T5\5d5l5t5|5
0 0$0(0,0004080<0@0D0H0L0P0T0X0\0`0d0h0l0p0t0x0|0
C:\Windows\System32\notepad.exe
C:\Windows\SysWOW64\notepad.exe
comms.lovebank.co.za
Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36
BidvestBank Internetbanking
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.ShellCode.4!c
Elastic Windows.Trojan.Generic
ClamAV Clean
CMC Clean
CAT-QuickHeal Trojan.Havocp.S33873462
Skyhigh Clean
ALYac Generic.ShellCode.Marte.2.B322A6DF
Cylance Clean
Zillya Clean
Sangfor Trojan.Win32.Shellcode.Vxzp
CrowdStrike Clean
Alibaba Clean
K7GW Clean
K7AntiVirus Clean
huorong Backdoor/CobaltStrike.l
Baidu Clean
VirIT Clean
Paloalto generic.ml
Symantec Trojan.Gen.MBT
tehtris Clean
ESET-NOD32 a variant of Win32/Havoc.F
APEX Clean
Avast Win32:MsfShell-V [Hack]
Cynet Malicious (score: 100)
Kaspersky UDS:DangerousObject.Multi.Generic
BitDefender Generic.ShellCode.Marte.2.B322A6DF
NANO-Antivirus Clean
ViRobot Clean
MicroWorld-eScan Generic.ShellCode.Marte.2.B322A6DF
Tencent Trojan.Win32.Metasploit_heur.16000691
Sophos Mal/Generic-S
F-Secure Clean
DrWeb Clean
VIPRE Generic.ShellCode.Marte.2.B322A6DF
TrendMicro TROJ_GEN.R002C0DJH24
McAfeeD ti!E72717C35988
Trapmine Clean
CTX dll.trojan.havoc
Emsisoft Generic.ShellCode.Marte.2.B322A6DF (B)
Ikarus Win32.Outbreak
FireEye Generic.ShellCode.Marte.2.B322A6DF
Jiangmin Clean
Webroot Clean
Varist Clean
Avira Clean
Fortinet Clean
Antiy-AVL Trojan/Win32.Metasploit.a
Kingsoft Win64.Trojan.Shelma.a
Gridinsoft Trojan.Win32.PikaBot.sa
Xcitium Clean
Arcabit Generic.ShellCode.Marte.2.B322A6DF
SUPERAntiSpyware Clean
ZoneAlarm UDS:DangerousObject.Multi.Generic
Microsoft Trojan:Win32/Pikabot.RPY!MTB
Google Detected
AhnLab-V3 Clean
Acronis Clean
McAfee Artemis!68AB6BCBB50F
TACHYON Clean
VBA32 Clean
Malwarebytes Clean
Panda Trj/CI.A
Zoner Clean
TrendMicro-HouseCall Clean
Rising Trojan.ShellCode!1.C856 (CLASSIC)
Yandex Clean
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.121218.susgen
GData Win32.Malware.Rozena.F
AVG Win32:MsfShell-V [Hack]
DeepInstinct MALICIOUS
alibabacloud Backdoor:Win/Havoc.G
No IRMA results available.