2023-07-20 19:45:02
a56f115ee5ef2625bd949acaeec66b76
Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
---|---|---|---|---|
0x00001000 | 0x0000edf5 | 0x00008800 | 7.97343690345 | |
0x00010000 | 0x000099bc | 0x00003e00 | 7.91195748385 | |
0x0001a000 | 0x00002564 | 0x00000600 | 7.74319015728 | |
0x0001d000 | 0x00001194 | 0x00000a00 | 7.59682763321 | |
0x0001f000 | 0x0000015c | 0x00000200 | 6.42159913679 | |
0x00020000 | 0x000000f8 | 0x00000200 | 6.19233329595 | |
0x00021000 | 0x0000067c | 0x00000600 | 6.70407408569 | |
.edata | 0x00022000 | 0x00001000 | 0x00000200 | 1.47334779969 |
.idata | 0x00023000 | 0x00001000 | 0x00000200 | 0.649575783613 |
.rsrc | 0x00024000 | 0x00001000 | 0x00000200 | 2.52739185048 |
.themida | 0x00025000 | 0x00d16000 | 0x00000000 | 0.0 |
.boot | 0x00d3b000 | 0x008c2200 | 0x008c2200 | 7.95912006148 |
Name | Offset | Size | Language | Sub-language | File type |
---|---|---|---|---|---|
RT_MANIFEST | 0x00024058 | 0x00000091 | LANG_ENGLISH | SUBLANG_ENGLISH_US | XML 1.0 document text |
Ordinal | Address | Name |
---|---|---|
1 | 0x1800014c0 | RedshiftEngine |
2 | 0x1800014f0 | initializePlugin |
3 | 0x180001510 | uninitializePlugin |
Antivirus | Signature |
---|---|
Bkav | W32.Common.9BB20BC2 |
Lionic | Clean |
tehtris | Clean |
DrWeb | Clean |
MicroWorld-eScan | Clean |
ClamAV | Clean |
CMC | Clean |
CAT-QuickHeal | Clean |
ALYac | Clean |
Malwarebytes | Clean |
VIPRE | Clean |
Sangfor | Clean |
CrowdStrike | win/malicious_confidence_100% (W) |
Alibaba | Clean |
K7GW | Clean |
K7AntiVirus | Clean |
BitDefenderTheta | Clean |
VirIT | Clean |
Cyren | Clean |
Symantec | Clean |
Elastic | malicious (moderate confidence) |
ESET-NOD32 | Clean |
APEX | Malicious |
Paloalto | Clean |
Cynet | Clean |
Kaspersky | Clean |
BitDefender | Clean |
NANO-Antivirus | Clean |
ViRobot | Clean |
Tencent | Clean |
TACHYON | Clean |
Sophos | Clean |
F-Secure | Clean |
Baidu | Clean |
Zillya | Clean |
TrendMicro | Clean |
McAfee-GW-Edition | BehavesLike.Win64.Generic.rc |
Trapmine | malicious.high.ml.score |
FireEye | Clean |
Emsisoft | Clean |
Ikarus | Clean |
Jiangmin | Clean |
Webroot | W32.Trojan.Gen |
Avira | Clean |
Antiy-AVL | Clean |
Microsoft | Clean |
Gridinsoft | Clean |
Xcitium | Clean |
Arcabit | Clean |
SUPERAntiSpyware | Clean |
ZoneAlarm | Clean |
GData | Clean |
Clean | |
AhnLab-V3 | Clean |
Acronis | Clean |
McAfee | Artemis!CFC3159479EB |
MAX | Clean |
DeepInstinct | MALICIOUS |
VBA32 | Clean |
Cylance | Clean |
Panda | Clean |
Zoner | Clean |
TrendMicro-HouseCall | Clean |
Rising | Clean |
Yandex | Clean |
SentinelOne | Clean |
MaxSecure | Trojan.Malware.300983.susgen |
Fortinet | Clean |
AVG | Clean |
Avast | Clean |
IRMA | Signature |
---|---|
Avast Core Security (Linux) | Clean |
F-Secure Antivirus (Linux) | Clean |
Windows Defender (Windows) | Clean |
McAfee CLI scanner (Linux) | Clean |
Microsoft Defender ATP (Linux) | Clean |
ESET NOD32 Antivirus (Linux) | Clean |
GData (Windows) | Clean |
Kaspersky Antivirus (Win) | Clean |
Forticlient (Linux) | Malware_Generic.P0 |
Trend Micro SProtect (Linux) | Clean |
Sophos Anti-Virus (Linux) | Clean |
Bitdefender Antivirus (Linux) | Clean |
DrWeb Antivirus (Linux) | Clean |
ClamAV (Linux) | Clean |
eScan Antivirus (Linux) | Clean |