popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

uTorrent.exe

UPX PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Jan. 2, 2025, 5:18 a.m. Jan. 2, 2025, 5:18 a.m.
Size 2.0MB
Type PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5 cbdb9a7ab738a9db5d7dac92fdc5f412
SHA256 a2ddaf2bffe582232faf1db05e8e376d8b65472286109034c25664627e5ebd87
CRC32 D8B73D44
ssdeep 49152:ch4PNRa0SVkzJyDJshEQcjqWheSwE0G57yGD1:ch4lxSVkcshEQcWWtw+/D1
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

resource name CSS
resource name GIF
resource name JS
resource name PNG
section {u'size_of_data': u'0x001d7c00', u'virtual_address': u'0x003cc000', u'entropy': 7.999854044310085, u'name': u'UPX1', u'virtual_size': u'0x001d8000'} entropy 7.99985404431 description A section with a high entropy has been found
section {u'size_of_data': u'0x0001f000', u'virtual_address': u'0x005a4000', u'entropy': 6.988840984336957, u'name': u'.rsrc', u'virtual_size': u'0x0001f000'} entropy 6.98884098434 description A section with a high entropy has been found
entropy 1.0 description Overall entropy of this PE file is high
section UPX0 description Section name indicates UPX
section UPX1 description Section name indicates UPX