Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
09.22 04:09
2.exe
09.21 02:09
random.exe
09.21 02:09
sdhsfd.exe
09.21 02:09
66edb89bc4073_crypted....
09.21 02:09
66ed33772bbe7_vdfhsjf1...
09.21 02:09
game.exe
09.21 02:09
66ebb3bf78bd6_Send.exe...
09.21 02:09
66ed33717e4c1_vfdshfda...
09.21 02:09
random.exe
09.21 02:09
66ed336eac985_vdfhssfd...

Latest News
09.22 12:09
[PASCON 2024-리뷰] 굿모닝아이...
09.22 12:09
[PASCON 2024-강연] 박나룡 소...
09.22 12:09
2024-09-19 - File down...
09.22 11:09
The Surprising Effects...
09.22 10:09
두리코스 댕기머리, 중국인 300만 명이...
09.22 09:09
Announcing SecTemplate...
09.22 08:09
When Raw Network Socke...
09.22 08:09
Biden Administration t...
09.22 08:09
IT Sicherheitsnews tae...
09.22 07:09
September 22, 2024

Summary | ZeroBOX

fack.jpg

Category	Machine	Started	Completed
FILE	s1_win7_x6401	April 17, 2021, 10:06 a.m.	April 17, 2021, 10:26 a.m.

Size	955.8KB
Type	ASCII text, with very long lines, with CRLF line terminators
MD5	`9cef89ec89411f062a8347f161ecab35`
SHA256	`f355e1c426b13dfecaa3027998c282af56b603f8555280a50c821f20919bbbe4`
CRC32	`0B4D6A91`
ssdeep	`1536:NG7MA34KtGjNnRm9aTpYlIgayfLyhmyORtjIPxplXCZInfLwbkSOW+69VuvIDiuK:3`
Yara	None matched

cmd.exe "C:\Windows\System32\cmd.exe" /c start /wait "Khzn" C:\Users\test22\AppData\Local\Temp\fack.jpg
1772

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 5 AntiVirus engines on VirusTotal as malicious (5 events)

Sangfor	Malware.Generic-PS.Save.c325b7da
Avast	PwrSh:Agent-F [Trj]
DrWeb	PowerShell.Packed.25
Rising	Trojan.RunPE/PS!1.BEBE (CLASSIC)
AVG	PwrSh:Agent-F [Trj]