Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	July 12, 2021, 10:28 a.m.	July 12, 2021, 10:30 a.m.

Size	132.0KB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`d4602d1663b6b8b5dea53a0ef463eaf6`
SHA256	`bf0762b9fc3866fa23cf6e76326d3164ff72af1cfc6094ff8f69b8f48f4e211d`
CRC32	`AE6DDC30`
ssdeep	`3072:0RiB5BH9Ta1YlkAwca1TBfqTNOhctZRm9IOxXoQ:0R29TmEHwd1TBCBOkZ8IOxX`
Yara	PE_Header_Zero - PE File Signature IsPE32 - (no description) Malicious_Library_Zero - Malicious_Library IAmTheKing_Family - IAmTheKing Family

Name	Response	Post-Analysis Lookup
www.qnglsmc.com
www.bcmnlux.com	A 127.0.0.1	127.0.0.1

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Time & API	Arguments	Status	Return	Repeated
GetAdaptersAddresses July 12, 2021, 10:28 a.m.	flags: 15 family: 0		111	0

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Agentb.4!c
MicroWorld-eScan	Gen:Variant.Graftor.705334
FireEye	Generic.mg.d4602d1663b6b8b5
ALYac	Trojan.Agent.Wacatac
Cylance	Unsafe
Sangfor	Trojan.Win32.Wacatac.B
CrowdStrike	win/malicious_confidence_60% (W)
Alibaba	Trojan:Win32/Agentb.7bdcc8c8
K7GW	Riskware ( 0040eff71 )
K7AntiVirus	Riskware ( 0040eff71 )
Arcabit	Trojan.Graftor.DAC336
BitDefenderTheta	Gen:NN.ZexaE.34790.iuW@aaR6iRoi
Cyren	W32/Trojan.PRCO-5464
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/PowerPool.NAC
APEX	Malicious
Paloalto	generic.ml
Kaspersky	Trojan.Win32.Agentb.jxrj
BitDefender	Gen:Variant.Graftor.705334
Avast	Win32:Malware-gen
Tencent	Win32.Trojan.Agentb.Wqcm
Ad-Aware	Gen:Variant.Graftor.705334
Sophos	Mal/Generic-S
Comodo	Malware@#3e73yri9ucvng
F-Secure	Trojan.TR/Redcap.mupbo
TrendMicro	TROJ_FRS.VSNTG821
McAfee-GW-Edition	RDN/Generic.hbg
Emsisoft	Gen:Variant.Graftor.705334 (B)
SentinelOne	Static AI - Malicious PE
Webroot	W32.Malware.Gen
Avira	TR/Redcap.mupbo
Kingsoft	Win32.Troj.Undef.(kcloud)
Gridinsoft	Trojan.Win32.Agent.oa
Microsoft	Trojan:Win32/Wacatac.B!ml
ViRobot	Trojan.Win32.Agent.135168.FN
ZoneAlarm	Trojan.Win32.Agentb.jxrj
GData	Gen:Variant.Graftor.705334
AhnLab-V3	Malware/Win32.Generic.C2540872
McAfee	RDN/Generic.hbg
MAX	malware (ai score=85)
Malwarebytes	Malware.AI.4114941196
TrendMicro-HouseCall	TROJ_FRS.VSNTG821
Ikarus	Trojan.Win32.Powerpool
Fortinet	W32/Agentb.JXRJ!tr
AVG	Win32:Malware-gen
Cybereason	malicious.663b6b
Panda	Trj/GdSda.A

dexploer.exe