popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

mtQ.exe

Malicious Packer PE64 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Feb. 21, 2025, 4:30 p.m. Feb. 21, 2025, 4:34 p.m.
Size 21.0MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 6e6f46cefb577d77d7772a1c51de6da2
SHA256 913f0bf910c03920654804d3e618f4839977e990535da6e8d1a06411f7dcfa1a
CRC32 C5610D3A
ssdeep 393216:FCwBeFMRU0Jf0mvLR8rSUInq1tppq+kekVaZOekxy3rhhvvVuNjCIKBfh:FF3fpTR8WnYtpE+kekVshnVuch
Yara
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • IsPE64 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .goP
section .Gl?
section .D1A
section {u'size_of_data': u'0x014ff800', u'virtual_address': u'0x00f33000', u'entropy': 7.884213081632119, u'name': u'.D1A', u'virtual_size': u'0x014ff6f0'} entropy 7.88421308163 description A section with a high entropy has been found
entropy 0.999721034034 description Overall entropy of this PE file is high
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.GenericKDQ.4!c
Cynet Malicious (score: 100)
Skyhigh Artemis
ALYac QD:Trojan.GenericKDQ.CC76E7363D
Cylance Unsafe
VIPRE QD:Trojan.GenericKDQ.CC76E7363D
Sangfor Suspicious.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (D)
BitDefender QD:Trojan.GenericKDQ.CC76E7363D
K7GW Trojan ( 0059f2a61 )
K7AntiVirus Trojan ( 0059f2a61 )
Arcabit QD:Trojan.GenericQ.CC76E7363D
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 a variant of Win64/Packed.VMProtect.X suspicious
APEX Malicious
Avast Win64:Evo-gen [Trj]
Kaspersky Trojan.Win32.Agent.xbvhtu
Alibaba Packed:Win64/VMProtect.192426bd
MicroWorld-eScan QD:Trojan.GenericKDQ.CC76E7363D
Emsisoft QD:Trojan.GenericKDQ.CC76E7363D (B)
McAfeeD Real Protect-LS!6E6F46CEFB57
Trapmine malicious.moderate.ml.score
CTX exe.trojan.vmprotect
Sophos Mal/Generic-S
SentinelOne Static AI - Malicious PE
FireEye Generic.mg.6e6f46cefb577d77
Google Detected
Antiy-AVL GrayWare/Win32.Wacapew
Kingsoft Win32.Trojan.Agent.xbvhtu
Gridinsoft Trojan.Heur!.02212023
Microsoft Program:Win32/Wacapew.C!ml
GData QD:Trojan.GenericKDQ.CC76E7363D
Varist W64/ABTrojan.ZMUQ-4284
McAfee Artemis!6E6F46CEFB57
DeepInstinct MALICIOUS
Ikarus PUA.VMProtect
TrendMicro-HouseCall TROJ_GEN.R002H09B725
Tencent Malware.Win32.Gencirc.1431450f
Fortinet Riskware/Application
AVG Win64:Evo-gen [Trj]
Paloalto generic.ml