Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
04.29 05:04
tomcaterror.bmpqoq
04.29 04:04
qoq.ps1
04.29 04:04
Important_Document.pdf...
04.29 04:04
dllbase64reverse.txt.exe
04.29 10:04
RuntimeBroker.exe
04.29 10:04
2555d50c-0b7e-4aa3-8d8...
04.29 10:04
csr.bin
04.29 10:04
test.exe
04.29 10:04
FreePhotoShop%20Meme%2...
04.29 10:04
discord.exe

Latest News
04.30 02:04
The DIY 1982 Picture P...
04.30 02:04
More Scans for SMS Gat...
04.30 02:04
Quantum threat mitigat...
04.30 02:04
Palo Alto Networks' re...
04.30 02:04
Google Serverless Spar...
04.30 02:04
Google Serverless Spar...
04.30 02:04
Meta Launches Standalo...
04.30 02:04
Intel Says Clients Pre...
04.30 02:04
Elektronische Patiente...
04.30 02:04
Microsoft announces th...

Summary | ZeroBOX

host.exe

UPX Malicious Library OS Processor Check PE32 PE File

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Feb. 7, 2025, 11:21 a.m.	Feb. 7, 2025, 11:21 a.m.

Size	2.7MB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`44b863fa5bd7e9c1743cf4d59f5b94c7`
SHA256	`41272de32df8fe468607b498e2e9e32995aaef7bb5c354aaacdab31d2ed70583`
CRC32	`3F06F8E3`
ssdeep	`49152:7v/lL26AaNeWgPhlmVqvMQ7XSKTxOEMkDk/JxfoGdv:7vNL26AaNeWgPhlmVqkQ7XSKTxy9f`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE32 - (no description) OS_Processor_Check_Zero - OS Processor Check UPX_Zero - UPX packed file

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

No signatures

host.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All