Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	May 16, 2023, 7:32 a.m.	May 16, 2023, 7:33 a.m.

Size	813.2KB
Type	PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
MD5	`9e97c6197f0e42fae10fdb58559d0add`
SHA256	`0f7f71f457a1b7d8e34d100bb6d069ed0428616a1f8d4cb6056c4729aa2dcb24`
CRC32	`2BD08FB9`
ssdeep	`12288:mKjjaLbtlkshIGwEgyMV1nAbRFmv93luorkENp3DTX3BXiQlqpW:d+HwsheEhEnAbRm3r/pTj1iQN`
Yara	UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check Malicious_Library_Zero - Malicious_Library IsDLL - (no description) IsPE64 - (no description) PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

section

.rdatas

MicroWorld-eScan	Trojan.Generic.33717569
McAfee	RDN/Generic.dx
Malwarebytes	Malware.AI.321937532
VIPRE	Trojan.Generic.33717569
Sangfor	Trojan.Win64.Agent.Vvva
CrowdStrike	win/malicious_confidence_60% (W)
Arcabit	Trojan.Generic.D2027D41
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win64/GenKryptik_AGen.HB
Kaspersky	Trojan.Win64.Donut.vii
BitDefender	Trojan.Generic.33717569
Avast	Win64:Evo-gen [Trj]
Emsisoft	Trojan.Generic.33717569 (B)
McAfee-GW-Edition	RDN/Generic.dx
FireEye	Trojan.Generic.33717569
Sophos	Mal/Generic-S
MAX	malware (ai score=86)
Antiy-AVL	Trojan/Win64.GenKryptik
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	Trojan.Win64.Donut.vii
GData	Trojan.Generic.33717569
ALYac	Trojan.GenericKD.67031816
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H0DED23
Rising	Trojan.Kryptik!8.8 (CLOUD)
AVG	Win64:Evo-gen [Trj]
DeepInstinct	MALICIOUS

xboyxVersionxx.txt