popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-03-16 19:37:04

PE Imphash

73631ea08f5960294eeacc1cc3c8d03a

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00000b3c 0x00000c00 6.39376421475
.rdata 0x00002000 0x0000028c 0x00000400 2.91723674004
.data 0x00003000 0x0006ac34 0x0006ae00 5.45466678685
.reloc 0x0006e000 0x0000006c 0x00000200 1.6997444416

Imports

Library KERNEL32.dll:
0x10002000 GetCurrentProcessId
0x10002004 GetCurrentThreadId
0x10002008 Sleep
Library USER32.dll:
0x10002010 SendMessageA
0x10002014 SetTimer
0x10002018 GetClientRect
0x1000201c MessageBoxA
0x10002020 GetClassNameA

Exports

Ordinal Address Name
1 0x10001219 ?GetPrmr@@YAHXZ
2 0x1000130c StartW
!This program cannot be run in DOS mode.
`.rdata
@.data
.reloc
t{;Atsv
?GetPrmr@@YAHXZ
StartW
.text$mn
.idata$5
.rdata
.edata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
GetCurrentProcessId
GetCurrentThreadId
KERNEL32.dll
SendMessageA
SetTimer
GetClientRect
MessageBoxA
GetClassNameA
USER32.dll
0&030:0B0O0]0k0p0z0
1 1;1H1x1
3-333<3D3M3X3f3y3
EcP2e7
miatm
Antivirus Signature
Bkav W32.AIDetect.malware2
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.36516677
CMC Clean
CAT-QuickHeal Clean
McAfee RDN/TrickBot
Cylance Clean
VIPRE Clean
AegisLab Trojan.Win32.Poison.tnUo
Sangfor Clean
CrowdStrike win/malicious_confidence_60% (D)
BitDefender Trojan.GenericKD.36516677
K7GW Clean
K7AntiVirus Clean
Baidu Clean
Cyren Clean
ESET-NOD32 a variant of Generik.BFQGXAR
APEX Malicious
Paloalto generic.ml
ClamAV Clean
Kaspersky Trojan.Win32.Trickpak.eo
Alibaba Clean
NANO-Antivirus Clean
SUPERAntiSpyware Clean
Rising Trojan.Trickpak!8.122C7 (CLOUD)
Ad-Aware Trojan.GenericKD.36516677
Emsisoft Clean
Comodo Clean
F-Secure Clean
DrWeb Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition Artemis!Trojan
MaxSecure Clean
FireEye Generic.mg.a4dc92b904b2b4b3
Sophos Clean
SentinelOne Clean
Jiangmin Clean
Webroot W32.Trojan.Gen
Avira TR/AD.TrickBot.pprzd
MAX malware (ai score=88)
Antiy-AVL Clean
Kingsoft Win32.Troj.Generic_a.a.(kcloud)
Microsoft Program:Win32/Wacapew.C!ml
Gridinsoft Clean
Arcabit Clean
ViRobot Clean
ZoneAlarm Trojan.Win32.Trickpak.eo
GData Trojan.GenericKD.36516677
Cynet Malicious (score: 90)
AhnLab-V3 Clean
Acronis Clean
VBA32 Clean
ALYac Trojan.Trickster.Gen
TACHYON Clean
Malwarebytes Clean
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Tencent Clean
Yandex Clean
Ikarus Win32.Outbreak
eGambit Clean
Fortinet W32/Generik.BFQGXAR!tr
BitDefenderTheta Gen:NN.ZedlaF.34628.Bq4@aOKBlVl
AVG Win32:Malware-gen
Avast Win32:Malware-gen
Qihoo-360 Win32/Heur.Generic.HygB8ucA
No IRMA results available.