Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	May 26, 2021, 9 a.m.	May 26, 2021, 9:09 a.m.

Size	200.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`08c192a4b1b2ffefcb59f04230682f8d`
SHA256	`f03b3535cbebab9352597b05d4ed76270fb06b5e29f525b6b8c4ded3b0d5aeb3`
CRC32	`53720F33`
ssdeep	`3072:WfUomEuYm98dlSq7gt5q7Dx+XgS6aCEwhOfUbCalNT2pbB3fIC1Xi6FLPo3c:WfUauY68uSWCx+XA7mg2pNf1Ljo3c`
Yara	PE_Header_Zero - PE File Signature OS_Processor_Check_Zero - OS Processor Check IsPE32 - (no description)

Oski_KelvinBryant.exe "C:\Users\test22\AppData\Local\Temp\Oski_KelvinBryant.exe"
2648

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch
203.159.80.62	Active	Moloch

No Suricata Alerts

No Suricata TLS

Time & API	Arguments	Status	Return	Repeated
GetComputerNameA May 26, 2021, 9 a.m.	computer_name: TEST22-PC	1	1	0

host

203.159.80.62

dead_host

203.159.80.62:80

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Siggen2.51398
MicroWorld-eScan	Gen:Variant.Zusy.303330
FireEye	Generic.mg.08c192a4b1b2ffef
ALYac	Gen:Variant.Zusy.303330
Zillya	Trojan.Agent.Win32.1358866
K7AntiVirus	Password-Stealer ( 00565c251 )
K7GW	Password-Stealer ( 00565c251 )
Cybereason	malicious.4b1b2f
BitDefenderTheta	AI:Packer.F69BEF3A1E
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/PSW.Agent.OJQ
APEX	Malicious
ClamAV	Win.Malware.Zusy-9781646-0
Kaspersky	HEUR:Trojan-PSW.Win32.Vidar.gen
BitDefender	Gen:Variant.Zusy.303330
NANO-Antivirus	Virus.Win32.Gen.ccmw
Rising	Stealer.OskiStealer!1.C41E (C64:YzY0OrCAJ3gw4UQH)
Ad-Aware	Gen:Variant.Zusy.303330
Emsisoft	Gen:Variant.Zusy.303330 (B)
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_GEN.R004C0DEI21
McAfee-GW-Edition	BehavesLike.Win32.Generic.dh
Sophos	Mal/Generic-S
Jiangmin	Trojan.Chapak.kps
Avira	TR/AD.Chapak.dvwuj
Microsoft	Trojan:Win32/AveMaria.GV!MTB
GData	Gen:Variant.Zusy.303330
Cynet	Malicious (score: 99)
AhnLab-V3	Malware/Win32.RL_Generic.R362865
McAfee	GenericRXLK-QG!08C192A4B1B2
MAX	malware (ai score=87)
VBA32	BScope.Trojan.Megumin
Malwarebytes	Trojan.Downloader
TrendMicro-HouseCall	TROJ_GEN.R004C0DEI21
Tencent	Malware.Win32.Gencirc.11bb3c0a
Yandex	Trojan.PWS.Agent!Of6VvuaaDII
Ikarus	Trojan-PSW.Agent
eGambit	Unsafe.AI_Score_58%
Fortinet	W32/Agent.OJE!tr
Panda	Trj/Genetic.gen
CrowdStrike	win/malicious_confidence_60% (W)

Oski_KelvinBryant.exe