Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	April 3, 2023, 8:43 a.m.	April 3, 2023, 8:46 a.m.

Size	322.0KB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`ab28d926012b7cf54ea99eafe85e580b`
SHA256	`b4ea2b4b198552bd5507a504480d1efe41343c84c317de4ed44f571f608c8d47`
CRC32	`5E63675D`
ssdeep	`6144:g/ji2H5h8EvzoWdN46Jd6VWxtoloBV+rLx:Yb8EvbdN9JsVJ6BV+rLx`
PDB Path	napstat.pdb
Yara	UPX_Zero - UPX packed file Malicious_Library_Zero - Malicious_Library Win32_Trojan_Gen_2_0904B0_Zero - Win32 Trojan Gen Win32_Trojan_Gen_1_0904B0_Zero - Win32 Trojan Emotet IsPE64 - (no description) Malicious_Packer_Zero - Malicious Packer PE_Header_Zero - PE File Signature

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

napstat.pdb

resource name

MUI

FireEye	Trojan.GenericKD.66210371
McAfee	Artemis!AB28D926012B
VIPRE	Trojan.GenericKD.66210371
Alibaba	TrojanDownloader:Win32/Generic.b4a6ac3e
Arcabit	Trojan.Generic.D3F24A43
Cyren	W64/Downuk.A.gen!Eldorado
Symantec	Trojan.Gen.2
ESET-NOD32	a variant of Generik.FKHLKGS
Kaspersky	Trojan-Downloader.Win32.Agent.xyaoiu
BitDefender	Trojan.GenericKD.66210371
MicroWorld-eScan	Trojan.GenericKD.66210371
Avast	FileRepMalware [Misc]
Tencent	Win32.Trojan-Downloader.Agent.Cplw
Emsisoft	Trojan.GenericKD.66210371 (B)
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
Avira	TR/Dldr.Agent.pmmpz
Gridinsoft	Ransom.Win64.Sabsik.sa
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	Trojan-Downloader.Win32.Agent.xyaoiu
GData	Trojan.GenericKD.66210371
Google	Detected
MAX	malware (ai score=85)
Cylance	unsafe
Rising	Downloader.Agent!8.B23 (CLOUD)
Fortinet	W32/PossibleThreat
AVG	FileRepMalware [Misc]

oskg25