popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

sbd.exe

PE32 PE File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 June 25, 2021, 1:28 p.m. June 25, 2021, 1:35 p.m.
Size 49.0KB
Type PE32 executable (console) Intel 80386 (stripped to external PDB), for MS Windows
MD5 5485aa8dca6edb85db42e315026a7f1c
SHA256 3d10a895e55cd0d5ff6df19f06526ae6ebd6925af6ea9657dad06df818892c27
CRC32 F1DC3AF1
ssdeep 768:F6mICfINvZX1xTMhv9bxQEU7UL+AfTtArA4APbm3B6B1P:SxN9wh9pIROWrFEm34j
Yara
  • PE_Header_Zero - PE File Signature
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

WriteConsoleA

 buffer: n
console_handle: 0x0000000b
1 1 0

WriteConsoleA

 buffer: o host to connect to (-h for help)
console_handle: 0x0000000b
1 1 0
DrWeb Trojan.SkypeSpam.10751
MicroWorld-eScan Application.Generic.9886
FireEye Application.Generic.9886
CAT-QuickHeal Trojan.Trafog
ALYac Application.Generic.9886
Cylance Unsafe
Zillya Trojan.Generik.Win32.225
Sangfor Trojan.Win32.Trafog.rfn
K7AntiVirus Riskware ( 0040eff71 )
Alibaba Trojan:Win32/ShadowIntRat.e82d1981
K7GW Riskware ( 0040eff71 )
Cybereason malicious.dca6ed
Cyren W32/Backdoor.CYFP-1676
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/RiskWare.ShadowIntRat.A
Avast Win32:Malware-gen
ClamAV Win.Trojan.Agent-942582
Kaspersky HEUR:Trojan.Win32.Sbd.gen
BitDefender Application.Generic.9886
NANO-Antivirus Trojan.Win32.Sbd.ebjkhd
Paloalto generic.ml
AegisLab Trojan.Win32.Generic.4!c
Rising Trojan.Trafog!8.592 (CLOUD)
Ad-Aware Application.Generic.9886
Emsisoft Application.Generic.9886 (B)
Comodo Malware@#2jaxvtct8gtn6
VIPRE Trojan.Win32.Generic!BT
TrendMicro HKTL_SECBD
McAfee-GW-Edition Tool-Sbd
Sophos SBD (PUA)
Jiangmin Backdoor/Agent.cckj
Microsoft Trojan:Win32/Trafog!rfn
GData Application.Generic.9886
AhnLab-V3 Unwanted/Win32.RL_Xema.R368588
McAfee Tool-Sbd
MAX malware (ai score=100)
VBA32 Trojan.SkypeSpam
Malwarebytes Malware.AI.1605907540
TrendMicro-HouseCall HKTL_SECBD
Tencent Win32.Trojan.Generic.Svhl
Yandex Trojan.GenAsa!BaB64VgWBBs
Ikarus Backdoor
Fortinet Riskware/ShadowIntRat
AVG Win32:Malware-gen
Panda Generic Malware
CrowdStrike win/malicious_confidence_100% (W)
MaxSecure Trojan.Malware.986195.susgen