ScreenShot
| Created | 2023.03.12 21:37 | Machine | s1_win7_x6401 |
| Filename | DpEditor.exe | ||
| Type | MS-DOS executable, MZ for MS-DOS | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 2 detected (Trojanx, Detected) | ||
| md5 | d0267bb4717f5d69ed7d1e30e89e301d | ||
| sha256 | 8e803909431a5cf783764b107a2218b91d7274f32ad72e7fcd7c3093edb9b9b3 | ||
| ssdeep | 49152:pDBq9TcO/ifvtxI8D74tC8zyOI6SpT0UEWJfCYh71mzL/N8h/NWOLJAMPFWPm3/b:JeiXt574MKyOI6SpTlEWJfCYheL/N6/P | ||
| imphash | |||
| impfuzzy | |||
Network IP location
Signature (1cnts)
| Level | Description |
|---|---|
| notice | File has been identified by 2 AntiVirus engines on VirusTotal as malicious |
Rules (3cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | themida_packer | themida packer | binaries (upload) |
| notice | anti_vm_detect | Possibly employs anti-virtualization techniques | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|