popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

20AC0B78.Png

Malicious Library CAB MSOffice File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us July 12, 2023, 7:45 a.m. July 12, 2023, 7:49 a.m.
Size 1.4MB
Type Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Last Printed: Fri Dec 11 11:47:44 2009, Create Time/Date: Fri Dec 11 11:47:44 2009, Last Saved Time/Date: Fri Dec 11 11:47:44 2009, Security: 0, Code page: 936, Revision Number: {3A40F89A-B14D-4079-A14E-91FB76446447}, Number of Words: 2, Subject: S8oMy, Author: S8oMy, Name of Creating Application: Advanced Installer 16.5 build 8df7ad95, Template: ;2052, Title: Installation Database, Keywords: Installer, MSI, Database, Number of Pages: 200
MD5 bd461f69d8fc3e476a4c4a03080ca481
SHA256 8c95acc59305fde9fb949a0d26b8004507a57233dffa51b5a2880657755e1774
CRC32 60C02F2A
ssdeep 24576:KruDXXh3j04BMeRocDP1Nxyq7KDOJjkDOk4TB4McL8dfbfr7KCN5nQ6BAMVUTH:K+Xx4i5ooIq7iOJwyZeL8dfv7jN5nQ6I
Yara
  • CAB_file_format - CAB archive file
  • Malicious_Library_Zero - Malicious_Library
  • Microsoft_Office_File_Zero - Microsoft Office File

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

FireEye Trojan.GenericKD.47824262
CAT-QuickHeal Trojan.Agentb
McAfee GenericRXAA-AA!4B49C57CBEFA
VIPRE Trojan.GenericKD.47824262
K7AntiVirus Riskware ( 0040eff71 )
K7GW Riskware ( 0040eff71 )
BitDefenderTheta Gen:NN.ZedlaF.34786.rG4@aWpFvhd
Cyren W32/Trojan.HYF.gen!Eldorado
Symantec ML.Attribute.HighConfidence
ESET-NOD32 multiple detections
TrendMicro-HouseCall TROJ_GEN.R002H06BC22
Avast Win32:DirtyMoe-AA [Bot]
ClamAV Win.Trojan.Bulz-9863763-0
Kaspersky Trojan.Win32.Agentb.kkyd
BitDefender Trojan.GenericKD.47824262
Tencent Trojan.Win32.Agentb.wye
Emsisoft Trojan.GenericKD.47824262 (B)
Comodo Malware@#rpgmzhl7y5ey
DrWeb Trojan.Packed2.43111
Zillya Trojan.Convagent.Win32.3606
TrendMicro Trojan.VBS.FUPORFLEX.SMYEBDR
McAfee-GW-Edition GenericRXOX-RA!FDE752850864
Sophos Generic Reputation PUA (PUA)
Ikarus Trojan.Win32.VMProtect
Avira TR/VB.Agent.kudwm
Antiy-AVL Trojan/Generic.ASMalwS.5406
Kingsoft Win32.Troj.Generic.a.(kcloud)
Gridinsoft Malware.Win32.GenericMC.cc
Microsoft Trojan:Script/Wacatac.B!ml
GData Script.Trojan.PurpleFox.D
Cynet Malicious (score: 99)
AhnLab-V3 Dropper/MSI.Purplefox
VBA32 BScope.Trojan.Agentb
ALYac Generic.Exploit.VBScript.A.15AD1B91
MAX malware (ai score=82)
Rising Trojan.PurpleFox/MSI!1.D10D (CLASSIC)
MaxSecure Trojan.Malware.121218.susgen
Fortinet W32/PossibleThreat
AVG Win32:DirtyMoe-AA [Bot]