Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	April 1, 2021, 3:21 p.m.	April 1, 2021, 3:21 p.m.

Size	562.5KB
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`9143a373da62638070883e5069574176`
SHA256	`7f721141b9a5d5ee1bedc9729e3b5003cb2d161305b046090495b036e590394e`
CRC32	`A1A4D78A`
ssdeep	`12288:NbHAqgIuNsQBUTGlXA21Sp3vykrYIAtUfd+G+okZ:dBCNrU6/CakrYQdZ+hZ`
PDB Path	c:\made\Name\oh\gentle\Solution_one\use.pdb
Yara	Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen PE_Header_Zero - PE File Signature Zero OS_Processor_Check_Zero - OS Processor Check Signature Zero Win32_Trojan_Gen_1_0904B0_Zero - Win32 Trojan Emotet

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

c:\made\Name\oh\gentle\Solution_one\use.pdb

Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.45999752
McAfee	RDN/Dridex
Sangfor	Trojan.Win32.Save.a
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HKFC
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Downloader.Win32.Cridex.gen
BitDefender	Trojan.GenericKD.45999752
Avast	Win32:Trojan-gen
Rising	Downloader.Cridex!8.F70 (TFE:dGZlOgUe5oHeB4TeVA)
Ad-Aware	Trojan.GenericKD.45999752
Emsisoft	Trojan.GenericKD.45999752 (B)
Comodo	TrojWare.Win32.Agent.ohmhn@0
DrWeb	Trojan.Dridex.735
McAfee-GW-Edition	RDN/Dridex
FireEye	Generic.mg.9143a373da626380
Sophos	Mal/Generic-S
GData	Trojan.GenericKD.45999752
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
Gridinsoft	Trojan.Win32.Wacapew.oa
Arcabit	Trojan.Generic.D2BDE688
AegisLab	Trojan.Multi.Generic.4!c
ZoneAlarm	HEUR:Trojan-Downloader.Win32.Cridex.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Trojan/Win.Dridex.R375024
ALYac	Trojan.GenericKD.45999752
MAX	malware (ai score=80)
Cylance	Unsafe
Ikarus	Trojan-Banker.Dridex
eGambit	Unsafe.AI_Score_59%
Fortinet	PossibleThreat.MU
Webroot	W32.Trojan.Gen
AVG	Win32:Trojan-gen
Panda	Trj/GdSda.A
Qihoo-360	Win32/Trojan.Dridex.HgkASRwA

oikz5qpn.tar