Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Nov. 1, 2021, 6:21 p.m.	Nov. 1, 2021, 6:21 p.m.

Size	552.9KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`e0f1da55d595ccd8fa30eb7488b71ca2`
SHA256	`8b0bcfde5b6b65ad02f37b0b820d0af370155464ad42145bad1f2d0fec1f48c3`
CRC32	`5AF2FD7A`
ssdeep	`6144:BxA+EeaI0R1FmYtLf3I/sBqt8EQn/Blzaao9jUHFCsLAXJ/phvUReO:LWFR1FmY9FYLQnVAOpEXtphvUf`
Yara	PE_Header_Zero - PE File Signature Generic_Malware_Zero - Generic Malware IsPE32 - (no description) Is_DotNET_EXE - (no description) Win_Backdoor_AsyncRAT_Zero - Win Backdoor AsyncRAT

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Lionic	Trojan.MSIL.Stealer.l!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Bulz.869029
FireEye	Generic.mg.e0f1da55d595ccd8
ALYac	Gen:Variant.Bulz.869029
Cylance	Unsafe
Sangfor	Virus.Win32.Save.a
CrowdStrike	win/malicious_confidence_80% (D)
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/GenKryptik.FMWZ
APEX	Malicious
Paloalto	generic.ml
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Variant.Bulz.869029
Avast	FileRepMalware
Ad-Aware	Gen:Variant.Bulz.869029
Emsisoft	Gen:Variant.Bulz.869029 (B)
McAfee-GW-Edition	Artemis
Sophos	Mal/Generic-S
Kingsoft	Win32.PSWTroj.Undef.(kcloud)
Microsoft	Trojan:Win32/Sabsik.FL.A!ml
Arcabit	Trojan.Bulz.DD42A5
GData	Gen:Variant.Bulz.869029
Cynet	Malicious (score: 100)
McAfee	Artemis!E0F1DA55D595
MAX	malware (ai score=86)
Malwarebytes	Trojan.Agent.Gen
Yandex	Trojan.Agent!YCLuocL77Wo
SentinelOne	Static AI - Malicious PE
eGambit	PE.Heur.InvalidSig
AVG	FileRepMalware
Cybereason	malicious.4dcc20
MaxSecure	Trojan.Malware.300983.susgen

180.exe