popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

MajesticExec.exe

Generic Malware Malicious Packer PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Nov. 11, 2024, 9:40 a.m. Nov. 11, 2024, 9:50 a.m.
Size 12.0MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 1963ce8f3f680d344d195bc27449b9a7
SHA256 46d936bdc8ae3c40d119eec506b3a8aef4f6b97d10207fe4768692c3e887d082
CRC32 EDF35065
ssdeep 196608:+0wy/5kJJl8s7n+Z+92NmbU5k+SKnt6wH32n2:1q1f7n+Z+DUK4zX22
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)
  • Generic_Malware_Zero - Generic Malware

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .winlice
section {u'size_of_data': u'0x003e7000', u'virtual_address': u'0x000d7000', u'entropy': 7.905897200124129, u'name': u'.data', u'virtual_size': u'0x003eae20'} entropy 7.90589720012 description A section with a high entropy has been found
entropy 0.325764880767 description Overall entropy of this PE file is high
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.ShellCode.4!c
tehtris Generic.Malware
Skyhigh BehavesLike.Win64.Generic.wh
ALYac Generic.ShellCode.Donut.Marte.4.6F8DCA8D
Cylance Unsafe
VIPRE Generic.ShellCode.Donut.Marte.4.6F8DCA8D
CrowdStrike win/malicious_confidence_90% (W)
BitDefender Generic.ShellCode.Donut.Marte.4.6F8DCA8D
Arcabit Generic.ShellCode.Donut.Marte.4.6F8DCA8D
Symantec ML.Attribute.HighConfidence
Elastic Windows.Trojan.Donutloader
ESET-NOD32 a variant of Generik.ELADIVY
APEX Malicious
Avast Win32:Donut-A [Inj]
ClamAV Win.Packed.Rozena-10029918-0
Kaspersky Trojan.Win64.Shellcode.awa
Alibaba Trojan:Win64/Shellcode.3ef3d58e
MicroWorld-eScan Generic.ShellCode.Donut.Marte.4.6F8DCA8D
Rising Trojan.DonutLoader!1.E39F (CLASSIC)
Emsisoft Generic.ShellCode.Donut.Marte.4.6F8DCA8D (B)
McAfeeD Real Protect-LS!1963CE8F3F68
CTX exe.trojan.shellcode
Sophos Mal/Generic-S
SentinelOne Static AI - Suspicious PE
FireEye Generic.mg.1963ce8f3f680d34
Google Detected
Antiy-AVL GrayWare/Win32.Wacapew
Kingsoft Win64.Trojan.Shellcode.awa
Gridinsoft Trojan.Win64.Packed.sa
Microsoft Trojan:Win32/Casdet!rfn
GData Generic.ShellCode.Donut.Marte.4.6F8DCA8D
Varist W64/ABTrojan.UNNO-2709
AhnLab-V3 Malware/Win.Generic.C5690940
McAfee Artemis!1963CE8F3F68
DeepInstinct MALICIOUS
Malwarebytes Crypt.Trojan.MSIL.DDS
Ikarus Trojan.Win64.Agent
Panda Trj/Chgt.AD
TrendMicro-HouseCall TROJ_GEN.R002H09K124
Yandex Trojan.Shellcode!xSxloFwpPTo
MaxSecure Trojan.Malware.295548764.susgen
Fortinet W32/PossibleThreat
AVG Win32:Donut-A [Inj]
Paloalto generic.ml