popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-03-24 20:14:33

PE Imphash

7d35c86f856a368dd81109da3be969b9

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0000358d 0x00003600 5.47537493601
.rdata 0x00005000 0x000671b6 0x00067200 5.45898418194
.data 0x0006d000 0x00004034 0x00004200 5.36135767092
.reloc 0x00072000 0x00000094 0x00000200 2.01741126615

Imports

Library USER32.dll:
0x10005000 SetTimer
0x10005004 MessageBoxA
0x10005008 SendMessageA

Exports

Ordinal Address Name
1 0x10001bbd StartW
!This program cannot be run in DOS mode.
`.rdata
@.data
.reloc
StartW
.text$mn
.idata$5
.rdata
.edata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
SendMessageA
SetTimer
MessageBoxA
USER32.dll
1(1R1Z1_1
1#2+244@4
435W5/6t6}6
;4<<<E<i<
@si&IJ
JaA\[N
M\|7u4y%
{3+?aT$
Antivirus Signature
Bkav W32.AIDetect.malware2
Elastic malicious (high confidence)
MicroWorld-eScan Clean
FireEye Generic.mg.2ae20b49ac0c8f59
CAT-QuickHeal Clean
McAfee Clean
Cylance Unsafe
Zillya Clean
SUPERAntiSpyware Clean
Sangfor Clean
CrowdStrike win/malicious_confidence_90% (W)
Alibaba Clean
K7GW Clean
K7AntiVirus Clean
Arcabit Clean
BitDefenderTheta Gen:NN.ZedlaF.34628.Bq4@auN33ze
Cyren Clean
Symantec ML.Attribute.HighConfidence
TotalDefense Clean
Baidu Clean
APEX Malicious
Avast FileRepMalware
Cynet Malicious (score: 100)
Kaspersky VHO:Trojan-Banker.Win32.Trickster.gen
BitDefender Clean
NANO-Antivirus Clean
Paloalto Clean
AegisLab Clean
Tencent Clean
Ad-Aware Clean
Emsisoft Clean
Comodo Clean
F-Secure Clean
DrWeb Clean
VIPRE Clean
TrendMicro Clean
McAfee-GW-Edition Clean
CMC Clean
Sophos Clean
Ikarus Clean
Jiangmin Clean
eGambit Clean
Avira Clean
MAX Clean
Antiy-AVL Clean
Kingsoft Clean
Gridinsoft Clean
Microsoft Clean
ViRobot Clean
ZoneAlarm Clean
GData Clean
AhnLab-V3 Clean
Acronis Clean
VBA32 Clean
ALYac Clean
TACHYON Clean
Malwarebytes Clean
Zoner Clean
ESET-NOD32 Clean
TrendMicro-HouseCall Clean
Rising Malware.Heuristic!ET#78% (RDMK:cmRtazoHyqnMVXOV8/VcnBQcEboS)
Yandex Clean
SentinelOne Clean
MaxSecure Clean
Fortinet Clean
Webroot Clean
AVG FileRepMalware
Panda Clean
Qihoo-360 Clean
No IRMA results available.