popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

SilentClient.exe

Generic Malware Malicious Library UPX Malicious Packer PE File OS Processor Check PE32
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Oct. 29, 2021, 10:01 a.m. Oct. 29, 2021, 10:04 a.m.
Size 79.5KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 2b0d06e1d3523e021ae6df87589d564c
SHA256 cb84a35408acc14d0f8f7bc08355938e79bd7f4c75c670d8a69ba33cdcdc5a3a
CRC32 12B5BBEC
ssdeep 1536:STD7B5Qk8cm22UofK84I9HuPX/32UYGeT7ebwlKQJJOIsWHKcdAblzC7Knj:KDYtUogIpuPvGUYGU7R8wTAblzAKj
Yara
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
  • IsPE32 - (no description)
  • Malicious_Library_Zero - Malicious_Library
  • UPX_Zero - UPX packed file

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch
195.128.124.240 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .gfids
host 195.128.124.240
dead_host 195.128.124.240:5656
Lionic Trojan.Win32.Agent.m!c
Elastic malicious (high confidence)
Cynet Malicious (score: 100)
ALYac Gen:Trojan.Heur.JP.eyW@a4gRvybi
Zillya Trojan.Tinukebot.Win32.209
Sangfor Suspicious.Win32.Save.a
K7AntiVirus Trojan ( 0055fed21 )
Alibaba Backdoor:Win32/Tinukebot.2d6d3664
K7GW Trojan ( 0055fed21 )
CrowdStrike win/malicious_confidence_100% (W)
Arcabit Trojan.Heur.JP.EB188D
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win32/Tinukebot.AO
APEX Malicious
Paloalto generic.ml
Kaspersky HEUR:Backdoor.Win32.Agent.gen
BitDefender Gen:Trojan.Heur.JP.eyW@a4gRvybi
NANO-Antivirus Trojan.Win32.Tinukebot.imioxc
MicroWorld-eScan Gen:Trojan.Heur.JP.eyW@a4gRvybi
Avast Win32:Trojan-gen
Ad-Aware Gen:Trojan.Heur.JP.eyW@a4gRvybi
Emsisoft Gen:Trojan.Heur.JP.eyW@a4gRvybi (B)
VIPRE Trojan.Win32.Generic!BT
McAfee-GW-Edition BehavesLike.Win32.Dropper.lh
FireEye Generic.mg.2b0d06e1d3523e02
Sophos Mal/Generic-S
Ikarus Trojan.Win32.Tinukebot
Jiangmin Backdoor.Agent.jbx
Avira TR/Tinukebot.zxgsr
Microsoft Trojan:Win32/Ymacco.AACB
GData Gen:Trojan.Heur.JP.eyW@a4gRvybi
AhnLab-V3 Trojan/Win.BackDoor.C4383110
McAfee Artemis!2B0D06E1D352
MAX malware (ai score=89)
VBA32 BScope.Backdoor.Agent
Cylance Unsafe
Tencent Win32.Backdoor.Agent.Hqcb
Yandex Trojan.Tinukebot!m/rL7QNc5YA
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.9530778.susgen
Fortinet W32/Tinukebot.AO!tr
BitDefenderTheta AI:Packer.7E0964E11F
AVG Win32:Trojan-gen
Cybereason malicious.1d3523
Panda Trj/GdSda.A