Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	April 1, 2021, 9:51 a.m.	April 1, 2021, 9:52 a.m.

Size	7.5KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`6be41709f8bfbf06307cc56d04249801`
SHA256	`0099e62ea3beb0f1631eb088bd697fd829963713ef4cb0e3a0a72b8c950c2383`
CRC32	`F4B3FBBE`
ssdeep	`192:3rFqRMky3fM9V7FKI47Wd+h4+0XoQ9DWhL3mj9:3rFqRMh3KlFP47Wd+hr059UL3m`
PDB Path	C:\Users\Test\source\repos\Pastebin Payload\Pastebin Payload\obj\Release\Pastebin Payload.pdb
Yara	PE_Header_Zero - PE File Signature Zero IsPE32 - (no description) IsNET_EXE - (no description) IsWindowsGUI - (no description) HasDebugData - DebugData Check Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

C:\Users\Test\source\repos\Pastebin Payload\Pastebin Payload\obj\Release\Pastebin Payload.pdb

MicroWorld-eScan	Gen:Variant.Bulz.406461
FireEye	Generic.mg.6be41709f8bfbf06
McAfee	RDN/Generic Downloader.x
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
Alibaba	Trojan:MSIL/DropperX.707bc1cb
Cybereason	malicious.9f8bfb
Arcabit	Trojan.Bulz.D633BD
BitDefenderTheta	Gen:NN.ZemsilF.34662.am0@aaeyfup
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/TrojanDownloader.Agent.BCI
TrendMicro-HouseCall	TROJ_GEN.R002H0CCV21
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-PSW.MSIL.Racealer.gen
BitDefender	Gen:Variant.Bulz.406461
Avast	Win32:DropperX-gen [Drp]
Ad-Aware	Gen:Variant.Bulz.406461
Emsisoft	Trojan.Agent (A)
DrWeb	Trojan.Siggen12.62789
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
APEX	Malicious
MAX	malware (ai score=99)
Gridinsoft	Trojan.Win32.Agent.sd!n
Microsoft	Trojan:Win32/Ymacco.AA00
AegisLab	Trojan.Win32.Bulz.4!c
ZoneAlarm	HEUR:Trojan-PSW.MSIL.Racealer.gen
GData	Gen:Variant.Bulz.406461
Cynet	Malicious (score: 90)
ALYac	Gen:Variant.Bulz.406461
Malwarebytes	Trojan.Downloader.MSIL.Generic
Ikarus	Win32.Outbreak
Rising	Downloader.Agent!8.B23 (CLOUD)
SentinelOne	Static AI - Malicious PE
Fortinet	MSIL/Agent.BCI!tr
Webroot	W32.Trojan.Gen
AVG	Win32:DropperX-gen [Drp]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (W)
Qihoo-360	Win32/TrojanSpy.Raccoon.HgIASR0A

china.png