popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

67069bbc38ee7_installs09.exe

UPX PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Oct. 21, 2024, 1:37 p.m. Oct. 21, 2024, 1:52 p.m.
Size 7.1MB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 1c93bbbf2b2d8e83c062f284ec826e7b
SHA256 10c12ffde56d43a4f999b96abfe7b1d95ca91366a0fa83094bf23d02f9fc03e5
CRC32 37D3A710
ssdeep 196608:wagSe/0WcbezKX/jircN9gDfHvuj0330Zwo/vWn6:x/XeA7ircngDvvuYUXen6
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x00710800', u'virtual_address': u'0x002f8000', u'entropy': 7.855538129498039, u'name': u'UPX1', u'virtual_size': u'0x00711000'} entropy 7.8555381295 description A section with a high entropy has been found
entropy 0.999723604201 description Overall entropy of this PE file is high
section UPX0 description Section name indicates UPX
section UPX1 description Section name indicates UPX
section UPX2 description Section name indicates UPX
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.Generic.4!c
Cynet Malicious (score: 99)
Skyhigh BehavesLike.Win64.PUP.wc
ALYac Trojan.GenericKD.74282266
Cylance Unsafe
VIPRE Trojan.GenericKD.74282266
Sangfor Trojan.Win32.Agent.Vogk
CrowdStrike win/malicious_confidence_60% (D)
BitDefender Trojan.GenericKD.74282266
K7GW Riskware ( 00584baa1 )
K7AntiVirus Riskware ( 00584baa1 )
Arcabit Trojan.Generic.D46D751A
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
Avast Win64:DropperX-gen [Drp]
Kaspersky Trojan-Downloader.Win32.Gomal.ahs
Alibaba TrojanDownloader:Win32/Gomal.58eac280
MicroWorld-eScan Trojan.GenericKD.74282266
Rising Downloader.Gomal!8.1778E (CLOUD)
Emsisoft Trojan.GenericKD.74282266 (B)
F-Secure Trojan.TR/Redcap.gjmtd
McAfeeD Real Protect-LS!1C93BBBF2B2D
CTX exe.trojan.generic
Sophos Mal/Generic-S
FireEye Trojan.GenericKD.74282266
Google Detected
Avira TR/Redcap.gjmtd
Antiy-AVL Trojan/Win32.Agent
Kingsoft Win32.Troj.Unknown.a
Gridinsoft Spy.Win64.Keylogger.cl
Microsoft Trojan:Win32/Leonem
GData Trojan.GenericKD.74282266
AhnLab-V3 Malware/Win.Generic.C5681296
McAfee Artemis!1C93BBBF2B2D
DeepInstinct MALICIOUS
VBA32 Trojan.Wacatac
Malwarebytes Malware.AI.4043373425
Ikarus Trojan.Win32.Leonem
Panda Trj/Chgt.AD
Tencent Malware.Win32.Gencirc.141d5f6c
MaxSecure Trojan.Malware.284170487.susgen
Fortinet W32/PossibleThreat
AVG Win64:DropperX-gen [Drp]
Paloalto generic.ml
alibabacloud Trojan[downloader]:Win/Leonem.Gen