Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	April 26, 2021, 9:27 a.m.	April 26, 2021, 9:29 a.m.

Size	84.2KB
Type	Zip archive data, at least v2.0 to extract
MD5	`feb36e29ac649a1adec4fbcd1662bb42`
SHA256	`938136eca9dea56a49a8ef70710e8922cbb31687de628baf5ca374c7350eece3`
CRC32	`15687969`
ssdeep	`1536:9AKhVWLli+28JA2rJZxEPeZp533K/FZWlIRLcAdz+z07:fMJ/9H2eH5YWlaowzG07`
Yara	None matched

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
172.217.25.14	Active	Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Communicates with host for which no DNS query was performed (1 event)

host

172.217.25.14

File has been identified by 51 AntiVirus engines on VirusTotal as malicious (50 out of 51 events)

Elastic	malicious (high confidence)
FireEye	Trojan.GenericKD.41417241
CAT-QuickHeal	TrojanDropper.Jadtre.C5
McAfee	Generic.emu
Cylance	Unsafe
Zillya	Trojan.Jorik.Win32.109746
Sangfor	Trojan.Win32.Save.a
Alibaba	TrojanSpy:Win32/Jadtre.e9feaf00
K7GW	Riskware ( 0040eff71 )
K7AntiVirus	Riskware ( 0040eff71 )
Baidu	Win32.Trojan.KillAV.c
Cyren	W32/A-071bd618!Eldorado
Symantec	Trojan.Gen.NPE
ESET-NOD32	a variant of Win32/Wapomi.AQ
TrendMicro-HouseCall	TROJ_JADTRE.AK
Avast	Win32:Malware-gen
ClamAV	Win.Trojan.Agent-461245
Kaspersky	Trojan-Spy.Win32.Agent.dbyz
BitDefender	Trojan.GenericKD.41417241
NANO-Antivirus	Trojan.Win32.Guntor.flxxvc
AegisLab	Trojan.Win32.Agent.l!c
Rising	Stealer.OnLineGames!1.649D (CLOUD)
Sophos	Mal/Jadtre-C
Comodo	TrojWare.Win32.Wapomi.AQD@4pxxef
DrWeb	Trojan.Guntor.3
VIPRE	Trojan.Win32.Wapomi.aoa (v)
TrendMicro	TROJ_JADTRE.AK
McAfee-GW-Edition	BehavesLike.Emotet.mc
Emsisoft	Trojan.GenericKD.41417241 (B)
SentinelOne	Static AI - Malicious Archive
Jiangmin	Trojan/Generic.avmro
Avira	TR/Zusy.Elzob.9763.2
Kingsoft	Win32.Troj.Jorik.no.(kcloud)
Microsoft	TrojanDropper:Win32/Jadtre.C
Gridinsoft	Trojan.Win32.Agent.vb!s1
ViRobot	Trojan.Win32.S.Agent.86189
ZoneAlarm	Trojan-Spy.Win32.Agent.dbyz
GData	Trojan.GenericKD.41417241
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win32.Tdss.R43266
BitDefenderTheta	AI:Packer.4ACDBE5520
MAX	malware (ai score=98)
VBA32	TrojanDropper.TDSS
Malwarebytes	Malware.AI.3613798393
Tencent	Trojan.TenThief.Guntior.flg
Yandex	Trojan.GenAsa!j7nW2F9v6WA
Ikarus	Trojan.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Wapomi.AQ!tr
AVG	Win32:Malware-gen

6eb374b32f94435381bd3f41b0ab7661.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All