Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Dec. 4, 2023, 3:38 p.m.	Dec. 4, 2023, 3:38 p.m.

Size	16.5KB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`7ee103ee99b95c07cc4a024e4d0fdc03`
SHA256	`cc4960939a41d6a281ddad307b107e16214f4aeda261c9b5037f26e60dc7bba2`
CRC32	`FE2526C1`
ssdeep	`384:TWqH7LUQNe0YeoH9R7rkJApmiiT7AemssVnQgJmd:TW6LUQNeresznN8MsCntM`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Antivirus - Contains references to security software SystemBC_IN - SystemBC

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 55 AntiVirus engines on VirusTotal as malicious (50 out of 55 events)

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.Coroxy.4!c
MicroWorld-eScan	Trojan.GenericKD.69632373
FireEye	Generic.mg.7ee103ee99b95c07
Skyhigh	Artemis!Trojan
McAfee	Artemis!7EE103EE99B9
Malwarebytes	Malware.AI.3091785750
Zillya	Trojan.Coroxy.Win64.22
Sangfor	Trojan.Win64.Coroxy.Vwk7
K7AntiVirus	Trojan ( 005ac29a1 )
Alibaba	Trojan:Win32/Garvi.61962d22
K7GW	Trojan ( 005ac29a1 )
CrowdStrike	win/malicious_confidence_100% (W)
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win64/Coroxy.F
APEX	Malicious
Kaspersky	Trojan.Win32.Garvi.aml
BitDefender	Trojan.GenericKD.69632373
NANO-Antivirus	Trojan.Win64.Garvi.kcbicj
Avast	Win64:BackdoorX-gen [Trj]
Tencent	Malware.Win32.Gencirc.11b782b8
Emsisoft	Trojan.GenericKD.69632373 (B)
F-Secure	Trojan.TR/AD.Coroxy.eaiaq
VIPRE	Trojan.GenericKD.69632373
TrendMicro	Backdoor.Win64.SYSTEMBC.YXDJGZ
Trapmine	malicious.high.ml.score
Sophos	Mal/Generic-S
SentinelOne	Static AI - Malicious PE
MAX	malware (ai score=89)
Jiangmin	Trojan.Garvi.cl
Webroot	W32.Trojan.GenKD
Google	Detected
Avira	TR/AD.Coroxy.eaiaq
Varist	W64/ABRisk.WDSU-6257
Antiy-AVL	Trojan/Win64.Coroxy
Kingsoft	Win32.Troj.Unknown.a
Microsoft	Trojan:Win64/CobaltStrike.ZL!MTB
Arcabit	Trojan.Generic.D4268175
ViRobot	Trojan.Win.Z.Coroxy.16896.A
ZoneAlarm	Trojan.Win32.Garvi.aml
GData	Trojan.GenericKD.69632373
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5508187
ALYac	Trojan.GenericKD.69632373
Cylance	unsafe
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	Backdoor.Win64.SYSTEMBC.YXDJGZ
Rising	Trojan.CobaltStrike!8.EDF2 (TFE:4:ZsddHZdT6qP)
Ikarus	Trojan.Win64.Coroxy

VmManagedSetup.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All