popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

water.php

  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 March 17, 2021, 7:40 a.m. March 17, 2021, 7:41 a.m.
Size 433.0KB
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 a4dc92b904b2b4b31960bf84614dad78
SHA256 162bfebce722e1d9d4a4b67762b58c2129d5f76db40d101f2a4ab1438a795bc5
CRC32 6C83FE9E
ssdeep 12288:ZBQ+hBancZ5k5F1cPIesC4z77VGLkujjV6Mm:ZBhracZKC4QLkujjo
Yara
  • PE_Header_Zero - PE File Signature Zero
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • IsWindowsGUI - (no description)
  • HasDebugData - DebugData Check
  • HasRichSignature - Rich Signature Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Bkav W32.AIDetect.malware2
Elastic malicious (high confidence)
CrowdStrike win/malicious_confidence_70% (W)
APEX Malicious
Paloalto generic.ml
Cynet Malicious (score: 90)
Kaspersky UDS:DangerousObject.Multi.Generic
Avast FileRepMetagen [Malware]
FireEye Generic.mg.a4dc92b904b2b4b3
Webroot W32.Trojan.Gen
ZoneAlarm UDS:DangerousObject.Multi.Generic
BitDefenderTheta Gen:NN.ZedlaF.34628.Bq4@aOKBlVl
AVG FileRepMetagen [Malware]
Qihoo-360 HEUR/QVM40.1.F25F.Malware.Gen