Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Nov. 12, 2021, 7:48 a.m.	Nov. 12, 2021, 7:50 a.m.

Size	281.1KB
Type	Microsoft Cabinet archive data, 287893 bytes, 1 file
MD5	`0785352502e5180153c079fa6cbe1ada`
SHA256	`89097f85954c992ab27572d63daf119b87bb75cd3785ffcc2b5615988a9a398b`
CRC32	`391DA56E`
ssdeep	`6144:Ht289kjPMvG/Ob5606j6EJ7jnjF6LHaEaIskUTlje:N+jPMvr6+kjFqHaEdkl6`
Yara	Malicious_Library_Zero - Malicious_Library

cmd.exe "C:\Windows\System32\cmd.exe" /c start /wait "VBJTpR" C:\Users\test22\AppData\Local\Temp\EYWCET97LV2U.cab
2776

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Lionic	Trojan.Win64.CobaltStrike.4!c
FireEye	Trojan.GenericKDZ.73236
Symantec	Trojan.Gen.NPE
TrendMicro-HouseCall	Backdoor.Win64.COBEACON.SMA
Avast	Other:Malware-gen [Trj]
ClamAV	Win.Trojan.CobaltStrike-9044898-1
Kaspersky	HEUR:Trojan.Win64.CobaltStrike.gen
BitDefender	Trojan.GenericKDZ.73236
Tencent	Win64.Trojan.Cobaltstrike.Frx
TrendMicro	Backdoor.Win64.COBEACON.SMA
Emsisoft	Trojan.GenericKDZ.73236 (B)
Gridinsoft	Trojan.Win64.Downloader.oa!s1
Microsoft	TrojanDownloader:O97M/Donoff.SA!CAB
GData	Exploit.CVE-2021-40444.Gen.2
McAfee	Artemis!3E1B96C3F677
MAX	malware (ai score=81)
Rising	Backdoor.CobaltStrike/x64!1.D04A (CLASSIC)
Yandex	Trojan.CobaltStrike!s4mlTO1HeKM
Ikarus	Trojan.CobaltStrike
Fortinet	W32/PossibleThreat
AVG	Other:Malware-gen [Trj]
Panda	Trj/CI.A

EYWCET97LV2U.cab