popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

aguerox.exe

AsyncRAT
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 12, 2021, 10:42 a.m. April 12, 2021, 10:52 a.m.
Size 60.1KB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 99b84053fd2d502626a1f78394fbf8f2
SHA256 a001fac48c0a9f6e93b9a398a90d15e2338a773891eff27145db648967ed3e5e
CRC32 A3A757D2
ssdeep 768:eGy6WTX/WedAcf9v4x2vJKZDqRRYrAtiyTS39GflKGflvx/FIwJGun51uLGflvxb:eGy6WTX//T9v4x2vJKJYSctxYfm
Yara
  • Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT
  • PE_Header_Zero - PE File Signature Zero
  • IsPE32 - (no description)
  • IsNET_EXE - (no description)
  • IsWindowsGUI - (no description)
  • HasOverlay - Overlay Check

Name Response Post-Analysis Lookup
myliverpoolnews.cf
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.36658967
McAfee RDN/Generic Downloader.x
Cylance Unsafe
Sangfor Trojan.Win32.Save.a
K7AntiVirus Trojan-Downloader ( 0057a7a21 )
Alibaba Trojan:MSIL/AgentTesla.7f08cd0f
K7GW Trojan-Downloader ( 0057a7a21 )
Arcabit Trojan.Generic.D22F5F17
Cyren W32/MSIL_Kryptik.DNB.gen!Eldorado
Symantec Trojan.Gen.2
ESET-NOD32 a variant of MSIL/TrojanDownloader.Agent.HRW
APEX Malicious
Avast Win32:DangerousSig [Trj]
Kaspersky HEUR:Trojan.MSIL.PowerShell.gen
BitDefender Trojan.GenericKD.36658967
AegisLab Trojan.MSIL.PowerShell.4!c
Ad-Aware Trojan.GenericKD.36658967
Sophos Mal/Generic-S
Comodo Malware@#2s0bk2gby7rre
DrWeb Trojan.DownloaderNET.154
VIPRE Trojan.Win32.Generic!BT
McAfee-GW-Edition RDN/Generic Downloader.x
FireEye Trojan.GenericKD.36658967
Emsisoft Trojan.GenericKD.36658967 (B)
Ikarus Trojan-Downloader.MSIL.Agent
Jiangmin TrojanSpy.MSIL.bjbc
Avira TR/Dldr.Agent.zallc
Kingsoft Win32.Heur.KVM019.a.(kcloud)
Gridinsoft Trojan.Win32.Downloader.oa
Microsoft Trojan:MSIL/AgentTesla!MTB
GData Trojan.GenericKD.36658967
Cynet Malicious (score: 100)
AhnLab-V3 Trojan/Win.Generic.R415313
BitDefenderTheta Gen:NN.ZemsilCO.34670.dm1@ae6SPLc
ALYac Spyware.AgentTesla
MAX malware (ai score=99)
Malwarebytes Trojan.Injector
TrendMicro-HouseCall TROJ_FRS.VSNW09D21
Rising Downloader.Agent!8.B23 (CLOUD)
Fortinet MSIL/Kryptik.DNK!tr.dldr
Webroot W32.Trojan.Gen
AVG Win32:DangerousSig [Trj]
Panda Trj/GdSda.A
CrowdStrike win/malicious_confidence_100% (W)
Qihoo-360 Win32/Trojan.Generic.HgIASSUA