popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2021-03-30 00:00:42

PE Imphash

787151c6bef6ee11d1d73736521d9ba7

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x00004021 0x00004200 5.70254855793
.rdata 0x00006000 0x0001b6ae 0x0001b800 4.07183900747
.data 0x00022000 0x0001b31d 0x0001b400 4.01282661377

Imports

Library USER32.dll:
0x140006068 DlgDirListComboBoxW
0x140006070 LoadImageA
0x140006078 LoadBitmapA
0x140006080 GetWindow
0x140006088 GetUpdateRect
0x140006090 IsWindowVisible
Library GDI32.dll:
0x140006008 DrawEscape
0x140006010 CreateEllipticRgn
0x140006018 CreateCompatibleBitmap
0x140006020 CombineRgn
0x140006028 AbortPath
0x140006030 EndDoc
Library SHLWAPI.dll:
0x140006040 StrToIntA
0x140006048 StrRChrA
0x140006050 StrCmpIW
0x140006058 StrPBrkA
!This program cannot be run in DOS mode.
`.rdata
@.data
D$(H9D$0
t3HcL$
HcD$0H
HcD$Df;
HcD$4f;
HcD$@H
D$DHcD$@:
HcD$4H
H9D$`vC
D$HH9D$8
H+D$8f;
|$$!w;
D$ ;D$L
"HcD$ H
s@HcD$$f;
HcD$ HcL$(
HcT$(L
HcD$ HcL$
D$$HcD$$f;
tRH;D$(s
;D$(}Q
D$(9D$
H;D$(s\
H;D$(s]f;
$H;D$8u]
$H;D$8
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
.text$mn
.idata$5
.rdata
.rdata$zzzdbg
.idata$2
.idata$3
.idata$4
.idata$6
IsWindowVisible
GetUpdateRect
GetWindow
LoadBitmapA
LoadImageA
DlgDirListComboBoxW
USER32.dll
CombineRgn
CreateCompatibleBitmap
CreateEllipticRgn
CreateEllipticRgnIndirect
DrawEscape
EndDoc
AbortPath
GDI32.dll
StrPBrkA
StrRChrA
StrToIntA
StrCmpIW
SHLWAPI.dll
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
Antivirus Signature
Bkav Clean
Elastic malicious (high confidence)
MicroWorld-eScan Clean
CMC Clean
CAT-QuickHeal Clean
McAfee Artemis!EFA4B2E7D701
Malwarebytes Clean
VIPRE Clean
AegisLab Clean
Sangfor Clean
K7AntiVirus Clean
BitDefender Clean
K7GW Clean
Cybereason malicious.6daa63
Baidu Clean
Cyren Clean
Symantec Clean
ESET-NOD32 Clean
APEX Malicious
Paloalto generic.ml
ClamAV Clean
Kaspersky UDS:Trojan.Win32.Injuke
Alibaba Clean
NANO-Antivirus Clean
SUPERAntiSpyware Clean
Tencent Clean
Ad-Aware Clean
TACHYON Clean
Emsisoft Clean
Comodo Clean
F-Secure Clean
DrWeb Clean
Zillya Clean
TrendMicro Clean
McAfee-GW-Edition BehavesLike.Win64.Generic.dt
FireEye Clean
Sophos Clean
Ikarus Clean
Jiangmin Clean
MaxSecure Clean
Avira Clean
Antiy-AVL Clean
Kingsoft Clean
Microsoft Trojan:Win32/Wacatac.B!ml
Gridinsoft Clean
Arcabit Clean
ViRobot Clean
ZoneAlarm UDS:DangerousObject.Multi.Generic
GData Clean
Cynet Malicious (score: 100)
AhnLab-V3 Clean
Acronis Clean
BitDefenderTheta Clean
ALYac Clean
MAX Clean
VBA32 Clean
Cylance Clean
Panda Clean
Zoner Clean
TrendMicro-HouseCall Clean
Rising Malware.Undefined!8.C (CLOUD)
Yandex Clean
SentinelOne Clean
eGambit Clean
Fortinet Clean
Webroot Clean
AVG FileRepMetagen [Malware]
Avast FileRepMetagen [Malware]
CrowdStrike win/malicious_confidence_90% (W)
Qihoo-360 Clean
No IRMA results available.