Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Feb. 23, 2023, 12:17 p.m.	Feb. 23, 2023, 12:19 p.m.

Size	322.0KB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`f3d4ae3bf283967e6091cc6fad4d80d4`
SHA256	`cce45884a2b9e6e7060e0d69e9e2eb0d104cd32932403010eacc6ecf8a007107`
CRC32	`0AE93A09`
ssdeep	`6144:pIr3dfiMXANZqskF1JPyMNmYzfAoIlni8oAGV6uIZagNP:pIxR11yQzKk8WXcP`
PDB Path	dxdiag.pdb
Yara	Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen Win32_Trojan_Gen_1_0904B0_Zero - Win32 Trojan Emotet UPX_Zero - UPX packed file PE_Header_Zero - PE File Signature Malicious_Library_Zero - Malicious_Library IsPE64 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

dxdiag.pdb

resource name

MUI

Lionic	Trojan.Win32.Generic.4!c
Cynet	Malicious (score: 99)
ALYac	Trojan.GenericKD.65577785
Cylance	Unsafe
VIPRE	Trojan.GenericKD.65577785
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/TrojanDownloader.Agent.LI
ClamAV	Win.Downloader.Upatre-9880459-0
BitDefender	Trojan.GenericKD.65577785
MicroWorld-eScan	Trojan.GenericKD.65577785
Avast	FileRepMalware [Misc]
Rising	Downloader.Agent!8.B23 (CLOUD)
Emsisoft	Trojan.GenericKD.65577785 (B)
McAfee-GW-Edition	RDN/Generic Downloader.x
FireEye	Trojan.GenericKD.65577785
Ikarus	Trojan-Downloader.Win64.Agent
GData	Win64.Trojan.Agent.W23Z7G
Avira	TR/YAV.Minerva.isddw
Gridinsoft	Trojan.Win64.Downloader.sa
Arcabit	Trojan.Generic.D3E8A339
Microsoft	Trojan:Win32/Tiggre!rfn
Google	Detected
McAfee	RDN/Generic Downloader.x
MAX	malware (ai score=86)
Tencent	Win64.Trojan-Downloader.Oader.Lcnw
Fortinet	W64/Agent.LI!tr.dldr
AVG	FileRepMalware [Misc]
Panda	Trj/Chgt.AD
CrowdStrike	win/malicious_confidence_100% (W)

2209.exe