ScreenShot
| Created | 2024.04.01 07:51 | Machine | s1_win7_x6401 |
| Filename | Blaze_combat.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | |||
| md5 | c9e887a8ed0014744d5f59ef07327175 | ||
| sha256 | eff129dc01f2292d4306c80c976e6bda34e08763497758b92d34b6cc1db0b667 | ||
| ssdeep | 393216:wQgHDlanaGBXvDKtz+bhPWES4tiNQPNrIKc4gaPbUAgrO4mgh96l+ZArYsFRljSa:w3on1HvSzxAMNhFZArYs+dgCmxx5cs | ||
| imphash | f0486e7e054aa57188c99b0f71783b75 | ||
| impfuzzy | 192:U34BX/rbwL7T8gck/gKehFpi/k3CW5WlbF7V:U3Og8glOFpinu4x7V | ||
Network IP location
Signature (2cnts)
| Level | Description |
|---|---|
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | This executable has a PDB path |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|