popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2025-03-03 11:15:11

PE Imphash

2b3730cda46affc8837a7df18591704a

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0076dd2b 0x0076de00 4.81830333399
.rdata 0x0076f000 0x000004d6 0x00000600 4.30842257996
.data 0x00770000 0x00000050 0x00000200 0.122275881259
.rsrc 0x00771000 0x0002b4b0 0x0002b600 4.41940658954
.reloc 0x0079d000 0x00000cbc 0x00000e00 3.89339994869

Resources

Name Offset Size Language Sub-language File type
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_ICON 0x0079b658 0x00000468 LANG_NEUTRAL SUBLANG_NEUTRAL GLS_BINARY_LSB_FIRST
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_MENU 0x00772b68 0x000001d6 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_DIALOG 0x00772d40 0x00000114 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_STRING 0x0079c3b0 0x000000fa LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_STRING 0x0079c3b0 0x000000fa LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_STRING 0x0079c3b0 0x000000fa LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_STRING 0x0079c3b0 0x000000fa LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_ACCELERATOR 0x00772ef0 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_ACCELERATOR 0x00772ef0 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_ACCELERATOR 0x00772ef0 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_ACCELERATOR 0x00772ef0 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_ACCELERATOR 0x00772ef0 0x00000030 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_GROUP_ICON 0x0079bac0 0x00000084 LANG_NEUTRAL SUBLANG_NEUTRAL data
RT_VERSION 0x0079bb48 0x000004a4 LANG_NEUTRAL SUBLANG_NEUTRAL data

Imports

Library KERNEL32.dll:
0xb6f000 GetCommandLineA
0xb6f008 GetTempPathW
0xb6f00c GetLastError
0xb6f010 HeapAlloc
0xb6f014 HeapFree
0xb6f018 GetProcessHeap
0xb6f020 Sleep
0xb6f024 GetCurrentProcess
0xb6f028 ExitProcess
0xb6f02c GetSystemInfo
0xb6f030 GetVersion
0xb6f034 GetTickCount
0xb6f038 GetModuleFileNameW
0xb6f03c GetModuleHandleW
0xb6f040 GetProcAddress
0xb6f044 LoadLibraryW
0xb6f048 GlobalAlloc
0xb6f04c GlobalFree
0xb6f050 MultiByteToWideChar
Library USER32.dll:
0xb6f05c IsWindowVisible
0xb6f064 MessageBoxA
0xb6f068 GetWindowLongW
0xb6f06c IsDialogMessageW
0xb6f070 RegisterClassW
!This program cannot be run in DOS mode.
`.rdata
@.data
@.reloc
MpVmp32Entry
.text$mn
.idata$5
.rdata
.rdata$voltmd
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
.rsrc$01
.rsrc$02
GetCommandLineA
GetEnvironmentStringsW
GetTempPathW
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
SetCriticalSectionSpinCount
GetCurrentProcess
ExitProcess
GetSystemInfo
GetVersion
GetTickCount
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
LoadLibraryW
GlobalAlloc
GlobalFree
MultiByteToWideChar
ConvertDefaultLocale
KERNEL32.dll
RegisterClassW
IsWindowVisible
GetWindowContextHelpId
MessageBoxA
GetWindowLongW
IsDialogMessageW
USER32.dll
'2\O}0t
(^yqc^_
9rDu3(En
}Nu3d:
qhxXuS
Q:XN?t
o(hQ4N
"s-u{C
@MRlhhHu
2'262P2a2t2{2
5,5A5F5L5S5`5f5
60676K6R6f6m6
7#7*7>7E7Y7`7t7{7
81888L8S8g8n8
9$9+9?9F9h9
2J3S3d3m3|3
44/484I4R4c4l4|4
550595I5R5c5l5}5
6 60696J6S6d6m6
jjjjjj
kernel32.dll
Fswwa.dll
dLjywxrwoao
eMauub
6KPPwhT
fNcyzffjtztvgb
gMjljuh
hYgfqy
iWpoupwcdscwg
jDxqgdu
ATlEcUG
kPyghiipnvvx
lSzyykqrjxc
mQzpnmccxkaphe
nDmyjbgaeuoyeybzctjfz
oHsgjtxhkvvrzehypivm
pApanmbjzsajbkr
pB9c61pk
qMwtnmmk
rDhoxecxxyzkrhlputpyw
sDmfszhoa
tGxyeatrfzzgxuiwptpv
uJspcnvrn
vSnplxjzh
wKtlulnwijj
P8TyRfu
yKaoqshs
zPirxyujlkfrcetmt
{Hyslhkwiz
|Hbqwmjhxugcnyma
}Yiptufhnp
~Aeicb
Dpvbdo
Mgxlwzxevkz
Nsvtswuazmklurplyehi
Dywkchhckmafrpacekvb
Uwcodfqsj
Ohsgvtprbnlhd
b0xOgBzW
Wrjqremrelgirhsrwwkw
Qmxjzcsoghl
Shzhpipwgbnrbuenjnzm
Obqtzckvep
Vasscoafg
Sxcrlditnehivqf
s9xezkc
Kcgzkhegzpxmioshwdu
Fcrkzncws
Lbydal
Gugxcdjfrayqifqxm
Eunmpbtev
Rttasnvxfswptotlvuua
Wfugwesuuljimdzwkgd
Tjiesnvpgftpob
Ckdojtnxxmftu
Vqdwnby
Xaukywzfzflopkaxrwho
Ebnmmfukbffqiwzuz
gPrn2H9
Umrlsllepwcsfudpyjk
Netueqthzuudmryr
Msnlfxrrhnms
Uwdksvja
Mnbiqchjncinbbejjkc
yVeadZN3
Clrgygvvsbioesi
Ybhzawcjbfclidldplbo
Mcxhuesiyrxcoqd
Qinusfranubymej
Fbaiutpdauqxslqendb
vMI6XWM
Wzwzpkxxyhbpqbhtd
Ymqouktusftgb
Qhaoyytqrqyplszurkt
Ukbitom
Jnmmlvnalpkvedxncn
aSkKZ3
Scummqfizmqtt
Ewbtemargqnotlm
Lbpxfipiwajylys
Soygeantszltjn
Ttlklzkllcvkfl
Ibfsgldzxtu
Qttswgwgtnii
Lqcygfgcbockctqms
Ihqrdvklqfpcdjk
Ygblbys
Utgbfkc
Hqwicgalikuhc
Qfidcgsameupttcd
Xnyhdgkowvdsjdnzmp
lddyjNA4
Rnlmkhuc
Mxzikyzrdqrwxffic
Eppwitstpzgjrllwq
Ezawqirjskgs
Qitezvjgcl
Uhfoouwag
Nvxazpgozipeizeye
Xjkixeqpcsnt
Ngeqsrxdseqxld
Goyidlroxtjxfgdsc
Vioemnssg
Htlgaar
Ytyopgqcllxsagdxffmz
Iuabfa
Ifyusdz
Cnxlohcncgjekmbj
Deoxlsxtxsjlqgmzol
Klbdehi
Xcjerpiblx
Tysbfldqng
bs0QavP
Irtvowfjbopkznj
Mvmxrhqh
Eudkaaghtwxkqqhwod
Qysxnnncpgusvgltkbxc
Rbquzy
Ifwycdgh
bS88bD
Faxfhnet
Cjabdsgtf
Hkfshjcbe
Ihsiogo
Llrtjnnal
Cqdqzgukyjcftclqoqvs
Udhlrvardckfvxjx
Nnkmmbg
Nfbxchk
Rwruhjpxzgebdm
Tokdknhuwefhuz
Rt8iz9k
Mcnaykvczptinqhfcncf
Euqhrqpreyeqhjb
Ejxpbbjwlecsuuydnvcs
Cslameciwynctypxoi
Ksfcijrrnjje
Cwwbwkumoheiq
Ebnmmfukbffqiwzuz
BlPnyA
Dmbibdtdbidt
Almmnqhivu
Ovszgz
Vrmvqvhboqesegg
Advmqzwhobnmtnsbz
fIAfsXIb
Dgvghmftocfnolgaxbnr
Qqzwlqiaeopexfe
Szxdftibtcxr
Bfrrgpuhpmffddavjm
Qmhpuutdqadpp
Bljyzekybpspqg
Iehertj
Dtlsqzqhowmnnifmfflf
Diearme
mJn2ss
Qvrzhkcggcggun
Vkrvxgrkyekmzvqv
Yafkthtda
Hkxpebgkycwrvckqg
Xdxqvwao
Rreuglbrjjjkwxujf
Cncxidwxfila
Fimbvjxbkfw
r1PmGYT
Wskbfdxylnchyhoka
Qptnutoo
Beoaoorkzpzrzeb
Wdtdcxlqzvmqidgn
Lkramhwyox
Zxmiqgfq
Ndvjijakwju
NzSqu3
Yrpbjavpjdmrkm
Nzvlkjyaoa
Jnkskwlymdh
Srajfgdgsue
Dhhfsdf
sqKe8Z
Ihhomcv
Rgzsrplj
Pritcohxvgu
Kycryudopx
Mfhimvcvu
Xqqvhdjuafbqshwodn
Ddrnurypzv
Fqqicq
Neigcovlp
Tupnwgbqhmsaacp
Szsnofldcvj
Ipsfhoxntvsgqritwiv
Yotmryvmnjguunqqijc
Wuekaq
Bamhylpbkwsqlutdst
Segoe UI
ME3X06JRGD
ToolbarWindow32
d1eU4Xsz18
Y6NCVE5CHc
VS_VERSION_INFO
StringFileInfo
b5g7COtx
Comments
This program's analytics tools provide valuable insights into my performance
CompanyName
TechSphere Enterprises Technologies.
FileDescription
This program's analytics tools provide valuable insights into my performance
FileVersion
9.1.22.897
InternalName
TaskForgeApp
LegalCopyright
Copyright (C) 2022-2025 by TechSphere Enterprises Technologies.
OriginalFilename
CodeBridge.exe
ProductName
Task Manager DeLuxe
ProductVersion
9.1.22.897
VarFileInfo
Translation
ZEX4FJVfYXC9
XXdVzMixBiBVi8
O4i9cxca
93dRMgklc
kCXAFyWCcr2dkM
kkQZMgnvU9TYRg
2yRwDKTIZOd
gmuemCcSM063Gh
fGlQzdgZ
4IByNsC6aL4
Mrrm7X8Mm
BlE78MtN2Oj
rKmVIIKho8
wMruRBGqa
1BPJf7YRpL1rx
UMdWLrXqK
YJe1RAHcX
WFO5bfeTEHjLzN1
J3FMTLmJ
d8LGmwozkf8TW0
dNTjUoUST8
WrpiiB4Tee3GID
z5wGHVVy4Nuv
YEY6VfO0wh20YD
q7FcR7Hnk001kO
SYgUSEpGZjp
txW3EydX
6rjhwcAvR
GtjEHYnCYy5VTx
0ptMvBTJWup
KwHEpAGgouJqcEK
FB22bDvm
MPMIMTjshWRZ
4kz2pZIVH9k3Md0
gdv8Tl3k2r
yQBDZ0x9uQSC
OyRxKiAW60mMqV
ZhDEykThtEHWI
K4YUupmCDOw6op
zbOxUPMivj
0rQhgQZUBzuR
xVGQie4bBc2OkKf
KEmfYzxFsm
dFzC8LMsUQ
0fQXA8Rxt8BjEmq
ThRwRcIYY9
Antivirus Signature
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Zenpak.4!c
Elastic malicious (high confidence)
ClamAV Clean
CMC Clean
CAT-QuickHeal Trojan.Zenpak
Skyhigh Artemis!Trojan
ALYac Trojan.GenericKD.75928516
Cylance Unsafe
Zillya Clean
Sangfor Infostealer.Win32.Kryptik.Verj
CrowdStrike win/malicious_confidence_100% (W)
Alibaba Trojan:Win32/GenKryptik.8c6e86fa
K7GW Trojan ( 005c29bc1 )
K7AntiVirus Trojan ( 005c29bc1 )
huorong HVM:VirTool/Obfuscator.h
Baidu Clean
VirIT Clean
Paloalto generic.ml
Symantec ML.Attribute.HighConfidence
tehtris Clean
ESET-NOD32 a variant of Win32/GenKryptik.HGWG
APEX Malicious
Avast Win32:PWSX-gen [Trj]
Cynet Malicious (score: 99)
Kaspersky Trojan.Win32.Zenpak.fmfo
BitDefender Trojan.GenericKD.75928516
NANO-Antivirus Trojan.Win32.Zenpak.kvzxfi
ViRobot Clean
MicroWorld-eScan Trojan.GenericKD.75928516
Tencent Malware.Win32.Gencirc.14450fb0
Sophos Mal/Generic-S
F-Secure Trojan.TR/AD.Nekark.sbdyl
DrWeb Trojan.PWS.Lumma.1819
VIPRE Trojan.GenericKD.75928516
TrendMicro TrojanSpy.Win32.LUMMASTEALER.YXFCCZ
McAfeeD ti!DFA2AB0714C9
Trapmine malicious.moderate.ml.score
CTX exe.trojan.zenpak
Emsisoft Trojan.GenericKD.75928516 (B)
Ikarus Trojan.Win32.Krypt
FireEye Generic.mg.accdbd5044408c82
Jiangmin Clean
Webroot Clean
Varist W32/ABTrojan.FKBF-1648
Avira TR/AD.Nekark.sbdyl
Fortinet W32/GenKryptik.HGTB!tr
Antiy-AVL Trojan/Win32.Zenpak
Kingsoft Win32.Troj.Unknown.a
Gridinsoft Clean
Xcitium Clean
Arcabit Trojan.Generic.D48693C4
SUPERAntiSpyware Clean
Microsoft Trojan:Win32/Lummac!rfn
Google Detected
AhnLab-V3 Trojan/Win.PWSX-gen.R694727
Acronis Clean
McAfee Artemis!ACCDBD504440
TACHYON Clean
VBA32 Clean
Malwarebytes Spyware.Lumma
Panda Clean
Zoner Clean
TrendMicro-HouseCall TrojanSpy.Win32.LUMMASTEALER.YXFCCZ
Rising Trojan.Kryptik!8.8 (TFE:5:13FByKno5iN)
Yandex Clean
SentinelOne Clean
MaxSecure Trojan.Malware.328990566.susgen
GData Win32.Trojan.PSE.6SI1FA
AVG Win32:PWSX-gen [Trj]
DeepInstinct MALICIOUS
alibabacloud Trojan:Win/Wacatac.B9nj
No IRMA results available.