popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

crys.suite.exe

Generic Malware UPX Malicious Library Malicious Packer PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 16, 2023, 4:15 p.m. April 16, 2023, 4:43 p.m.
Size 3.8MB
Type PE32+ executable (GUI) x86-64, for MS Windows
MD5 ca1c266f80e30187ad1436b3da5bea81
SHA256 526c9ce5894a547167f22f1ff6dc539e7089f3bd90b86b9381c488a0080ee8c3
CRC32 C1F3A30C
ssdeep 49152:Csl1uxhzrhSbb6w537vkSAX13CFuSQU7wGVrxkAof81js78sFQt5nQH79h0uJUO4:Cs0Srvr4SQU7EH8wguJUV
Yara
  • UPX_Zero - UPX packed file
  • Malicious_Library_Zero - Malicious_Library
  • Generic_Malware_Zero - Generic Malware
  • OS_Processor_Check_Zero - OS Processor Check
  • IsPE64 - (no description)
  • Malicious_Packer_Zero - Malicious Packer
  • PE_Header_Zero - PE File Signature

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x00002400', u'virtual_address': u'0x003cc000', u'entropy': 7.818441778467045, u'name': u'.rsrc', u'virtual_size': u'0x000022bc'} entropy 7.81844177847 description A section with a high entropy has been found
Lionic Trojan.Win32.PMax.4!c
Elastic malicious (high confidence)
MicroWorld-eScan Gen:Variant.Lazy.225060
McAfee Artemis!CA1C266F80E3
Malwarebytes Spyware.PasswordStealer
Zillya Trojan.Agent.Win64.25503
K7AntiVirus Password-Stealer ( 005a0e011 )
Alibaba TrojanPSW:Win64/Stealer.76275012
K7GW Password-Stealer ( 005a0e011 )
CrowdStrike win/malicious_confidence_100% (W)
Cyren W64/ABRisk.EJDK-5327
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of Win64/PSW.Agent.CV
Cynet Malicious (score: 99)
Paloalto generic.ml
Kaspersky Trojan-PSW.Win64.Stealer.aas
BitDefender Gen:Variant.Lazy.225060
Rising Stealer.Luca!1.E36C (CLASSIC)
Sophos Mal/Generic-S
F-Secure Trojan.TR/PSW.Agent.sqhtu
VIPRE Gen:Variant.Lazy.225060
McAfee-GW-Edition BehavesLike.Win64.Rootkit.wh
FireEye Gen:Variant.Lazy.225060
Emsisoft Gen:Variant.Lazy.225060 (B)
Ikarus Win32.Outbreak
Webroot W32.Trojan.Gen
Avira TR/PSW.Agent.sqhtu
MAX malware (ai score=82)
Antiy-AVL Trojan[PSW]/Win64.Stealer
Microsoft Trojan:Win32/Wacatac.B!ml
Arcabit Trojan.Lazy.D36F24
ZoneAlarm Trojan-PSW.Win64.Stealer.aas
GData Gen:Variant.Lazy.225060
Google Detected
AhnLab-V3 Trojan/Win.Generic.R567420
ALYac Gen:Variant.Lazy.225060
DeepInstinct MALICIOUS
Cylance unsafe
Panda Trj/Chgt.AD
TrendMicro-HouseCall TROJ_GEN.R002H0DCI23
Tencent Win64.Trojan-QQPass.QQRob.Swhl
MaxSecure Trojan.Malware.204074036.susgen
Fortinet W64/Agent.CV!tr.pws
AVG Win64:MalwareX-gen [Trj]
Avast Win64:MalwareX-gen [Trj]