Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	July 7, 2021, 10:52 a.m.	July 7, 2021, 11:01 a.m.

Size	116.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`66be55da9e2ab05f8452bf8a3de2707c`
SHA256	`1fc65a967ab063e5d58e0358b81f9eca048b47013f1e2b1383d8f028b114cffd`
CRC32	`F41FEF41`
ssdeep	`3072:hbD/Xiw+FdW1vjxgDsSG7UsPDKV6UZikvQi:hgFdKLx2sSG4aDQLZ`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Graftor.974196
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (W)
Alibaba	Trojan:Win32/Injector.3486b228
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Injector.EPQX
APEX	Malicious
Paloalto	generic.ml
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Variant.Graftor.974196
Avast	FileRepMalware
Ad-Aware	Gen:Variant.Graftor.974196
Emsisoft	Gen:Variant.Graftor.974196 (B)
McAfee-GW-Edition	BehavesLike.Win32.Trojan.ch
FireEye	Generic.mg.66be55da9e2ab05f
Sophos	Mal/Generic-S
GData	Gen:Variant.Graftor.974196
ZoneAlarm	UDS:DangerousObject.Multi.Generic
Microsoft	Trojan:Win32/Fareit!ml
McAfee	RDN/Generic BackDoor
MAX	malware (ai score=88)
Cylance	Unsafe
SentinelOne	Static AI - Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Injector.EPQX!tr
BitDefenderTheta	Gen:NN.ZevbaF.34790.hm0@auemkOmi
AVG	FileRepMalware
Cybereason	malicious.caabb6
Panda	Trj/GdSda.A

serologs.jpg