Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Nov. 1, 2021, 6:21 p.m.	Nov. 1, 2021, 6:21 p.m.

Size	443.9KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`6093a7ccaec758a86ee4fb3bd81636db`
SHA256	`8f53c08791f32eee7f1f078a3038f9a9a928551e5fc0d98321e5d177fe5c7d15`
CRC32	`C9D2E7FC`
ssdeep	`6144:AC6j9CeVWepRcvyYhegYPeGpePEyFySgvPNI:ATEAWfvyYepecAyzP6`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description) Is_DotNET_EXE - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

FireEye	Generic.mg.6093a7ccaec758a8
Sangfor	Virus.Win32.Save.a
Cybereason	malicious.d9c93a
BitDefenderTheta	Gen:NN.ZemsilF.34236.Bm2@aKp2P5j
ESET-NOD32	a variant of MSIL/GenKryptik.FMWG
Paloalto	generic.ml
Kaspersky	HEUR:Trojan-Spy.MSIL.Stealer.gen
Avast	Win32:Trojan-gen
Sophos	Mal/Generic-S
F-Secure	Trojan.TR/AD.RedLineSteal.eibdv
SentinelOne	Static AI - Malicious PE
Avira	TR/AD.RedLineSteal.eibdv
Microsoft	Trojan:MSIL/RedLine.RPS!MTB
ZoneAlarm	HEUR:Trojan-Spy.MSIL.Stealer.gen
Cynet	Malicious (score: 100)
Malwarebytes	Trojan.Agent.Gen
APEX	Malicious
Yandex	Trojan.Agent!YCLuocL77Wo
eGambit	PE.Heur.InvalidSig
Fortinet	MSIL/GenKryptik.FMWG!tr
AVG	Win32:Trojan-gen
CrowdStrike	win/malicious_confidence_100% (D)
MaxSecure	Trojan.Malware.300983.susgen

177.exe