Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	June 2, 2021, 10:25 a.m.	June 2, 2021, 10:27 a.m.

Size	308.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`541369bff43470b5cb1056745b7eec92`
SHA256	`eb10ac373436166f7ca87d90b23d05247fcec78e9c791a454e68a17e29fdf54c`
CRC32	`08E40C4D`
ssdeep	`6144:zYFh5QZY/sBI2/AVFPosKZGN36DIKRdkCVsS13o3EQxH41I+iIy2ttd0fjtKpsS1:cFPJkBTAVFPosKZGN36DIKRdkCVsS13T`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
FireEye	Generic.mg.541369bff43470b5
McAfee	RDN/Generic.hbg
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
Alibaba	Trojan:Win32/Injector.5d6dee42
Cyren	W32/VBKrypt.AVO.gen!Eldorado
ESET-NOD32	a variant of Win32/Injector.EPLI
APEX	Malicious
Avast	Win32:Malware-gen
Cynet	Malicious (score: 100)
BitDefender	Trojan.GenericKD.37015770
Paloalto	generic.ml
ViRobot	Trojan.Win32.Z.Vbkrypt.315392.H
MicroWorld-eScan	Trojan.GenericKD.37015770
Ad-Aware	Trojan.GenericKD.37015770
DrWeb	Trojan.VbCrypt.2295
Emsisoft	Trojan.GenericKD.37015770 (B)
Ikarus	Win32.Outbreak
Microsoft	Trojan:Win32/GuLoader.KB!MTB
GData	Trojan.GenericKD.37015770
AhnLab-V3	Win-Trojan/VBKrypt.RP08.X1976
BitDefenderTheta	Gen:NN.ZevbaF.34692.tm0@a8dz2RhG
ALYac	Trojan.VBKrypt.gen
MAX	malware (ai score=99)
SentinelOne	Static AI - Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Injector.EPLI!tr
Webroot	W32.Malware.Gen
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_60% (W)

vbc.exe