Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	June 14, 2023, 1:37 p.m.	June 14, 2023, 1:39 p.m.

Size	10.7MB
Type	Zip archive data, at least v2.0 to extract
MD5	`93b21205544e5f6eab2df513c96cda2b`
SHA256	`60fbe240efd1eaa6b8a3f89115ff25cdea9ead4c8a3ce1fe002edaf15472a069`
CRC32	`5DD21EFE`
ssdeep	`196608:jckTATdbDH6lGd/E+ykGv4qETBK+57BH2bd8zhPsKJuc1KTZfooNg:dTAT5Dal/xV4qETYEPsac5pg`
Yara	zip_file_format - ZIP file format

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Elastic	malicious (high confidence)
FireEye	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E
McAfee	Artemis!ECBE36D23A87
Malwarebytes	Trojan.Crypt
VIPRE	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E
Arcabit	DeepScan:Generic.Trojan.Genesis.Marte.A.D88AEE2E
ESET-NOD32	a variant of Win32/Kryptik.HTUL
Avast	Win32:Evo-gen [Trj]
Kaspersky	HEUR:Trojan.Win32.Fieur.pef
BitDefender	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	Artemis
Emsisoft	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E (B)
SentinelOne	Static AI - Malicious Archive
GData	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	HEUR:Trojan.Win32.Fieur.pef
AhnLab-V3	Trojan/Win.Generic.R586428
ALYac	DeepScan:Generic.Trojan.Genesis.Marte.A.8957666E
MAX	malware (ai score=88)
DeepInstinct	MALICIOUS
VBA32	suspected of Trojan.Downloader.gen
Rising	Trojan.Fieur!8.17CEE (TFE:5:bODIjbKcc3L)
AVG	Win32:Evo-gen [Trj]

unknown.zip