Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	June 26, 2023, 7:42 a.m.	June 26, 2023, 7:53 a.m.

Size	1.5MB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`d4d1d09cb001fd13a0bbe7f775bb8aa6`
SHA256	`234d1814053dc46ff43c202d020d02f88853e4475b3df006b91f226f117e4152`
CRC32	`F919A6E3`
ssdeep	`24576:GMeMKQXe4pbuhVMDOxUI4j0aOBt+YzPoX7DjH:GMVKae4khODcZuPOhPoL3H`
Yara	Malicious_Library_Zero - Malicious_Library Malicious_Packer_Zero - Malicious Packer PE_Header_Zero - PE File Signature IsPE32 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

section

{u'size_of_data': u'0x00055400', u'virtual_address': u'0x00001a00', u'entropy': 7.998962926716507, u'name': u'.data', u'virtual_size': u'0x000552a0'}

entropy

7.99896292672

description

A section with a high entropy has been found

entropy

0.224342105263

description

Overall entropy of this PE file is high

Bkav	W32.AIDetectMalware
tehtris	Generic.Malware
VIPRE	Trojan.GenericKD.67751429
Sangfor	Trojan.Win32.Kryptik.Vm8p
K7GW	Trojan ( 005a7ad01 )
Cybereason	malicious.8e4860
Symantec	Trojan.Bayrob!g10
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win32/GenKryptik.GKJM
APEX	Malicious
BitDefender	Trojan.GenericKD.67751429
NANO-Antivirus	Virus.Win32.Gen.ccmw
MicroWorld-eScan	Trojan.GenericKD.67751429
Avast	Win32:Trojan-gen
Rising	Trojan.Kryptik!8.8 (CLOUD)
Emsisoft	Trojan.GenericKD.67751429 (B)
TrendMicro	Trojan.Win32.PRIVATELOADER.YXDFYZ
McAfee-GW-Edition	Artemis!Trojan
FireEye	Generic.mg.d4d1d09cb001fd13
Sophos	Mal/Generic-S
GData	Trojan.GenericKD.67751429
Gridinsoft	Spy.Win32.Vidar.bot
Arcabit	Trojan.Generic.D409CE05
Microsoft	Trojan:Win32/Casdet!rfn
McAfee	Artemis!D4D1D09CB001
MAX	malware (ai score=82)
Cylance	unsafe
TrendMicro-HouseCall	Trojan.Win32.PRIVATELOADER.YXDFYZ
Fortinet	W32/GenKryptik.GKJM!tr
AVG	Win32:Trojan-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_70% (W)

Setup.exe