Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Sept. 18, 2023, 4:33 p.m.	Sept. 18, 2023, 4:36 p.m.

Size	2.8MB
Type	Zip archive data, at least v2.0 to extract
MD5	`a99b863be7e866f7f3f4f88d3ef5b0d9`
SHA256	`6281f8a509aba0522fb93a2ed7ec93cec0396e1a6a166cab74328665fae1b2c8`
CRC32	`F7A829A9`
ssdeep	`49152:P/UjG7mjM01uqwh9Ne10xYWpOSF31OJOkuzINghEV9yZAQSq:HCzjM0Gh9NeU7M6zYghMy6q`
Yara	zip_file_format - ZIP file format

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Trustlook	Android.PUA.General
Alibaba	Backdoor:Android/Basdoor.33f101e3
SymantecMobileInsight	AdLibrary:Generisk
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Android/Spy.Agent.CVQ
Cynet	Malicious (score: 99)
Kaspersky	HEUR:Backdoor.AndroidOS.Basdoor.c
Tencent	Android.Backdoor.Basdoor.Ogil
F-Secure	Malware.ANDROID/Spy.Agent.GAAQ.Gen
DrWeb	Android.Spy.989.origin
McAfee-GW-Edition	Artemis!Trojan
Sophos	Andr/Spy-BIR
Ikarus	Win32.Outbreak
Avast-Mobile	Android:Evo-gen [Trj]
Avira	ANDROID/Spy.Agent.GAAQ.Gen
Microsoft	Trojan:Script/Wacatac.B!ml
ZoneAlarm	HEUR:Backdoor.AndroidOS.Basdoor.c
Google	Detected
BitDefenderFalx	Android.Riskware.Agent.KOL
AhnLab-V3	Trojan/Android.SpyAgent.1139328
McAfee	Artemis!A99B863BE7E8

files