popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

crypted_69a30000.exe

Craxs RAT PE32 PE File .NET EXE
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 April 5, 2024, 11:37 p.m. April 5, 2024, 11:37 p.m.
Size 2.1MB
Type PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 6d78e0311bb641bb7530f4ac48a6b5d0
SHA256 d6129031e25ad05a41f3e7da06b6a11d0d148133033fd865bad202a5165fb7c4
CRC32 335C4BC5
ssdeep 49152:6zgyDIZ9BQr0JAiBWGHEL655a7cICRzvDrJ1SE:i+BQr0JAsWGHU6ZpvnT
PDB Path Single.pdb
Yara
  • Craxs_RAT - Craxs RAT
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path Single.pdb
section {u'size_of_data': u'0x00220800', u'virtual_address': u'0x00002000', u'entropy': 7.9990207268486735, u'name': u'.text', u'virtual_size': u'0x00220704'} entropy 7.99902072685 description A section with a high entropy has been found
entropy 0.999082568807 description Overall entropy of this PE file is high
Bkav W32.AIDetectMalware.CS
Lionic Trojan.Win32.Stealer.12!c
Elastic malicious (high confidence)
Skyhigh Artemis!Trojan
ALYac Gen:Variant.Ser.Zusy.4984
Cylance unsafe
VIPRE Trojan.GenericKD.72237184
Sangfor Infostealer.Msil.Kryptik.V52p
K7AntiVirus Riskware ( 00584baa1 )
BitDefender Trojan.GenericKD.72237184
K7GW Riskware ( 00584baa1 )
Arcabit Trojan.Generic.D44E4080
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of MSIL/Kryptik.ALHI
APEX Malicious
McAfee Artemis!6D78E0311BB6
Avast Win32:PWSX-gen [Trj]
Kaspersky HEUR:Trojan-Spy.MSIL.Stealer.gen
Alibaba Trojan:MSIL/Kryptik.bb600ca3
MicroWorld-eScan Trojan.GenericKD.72237184
Rising Stealer.Agent!8.C2 (CLOUD)
Emsisoft Trojan.GenericKD.72237184 (B)
F-Secure Trojan.TR/AD.Nekark.aebfs
DrWeb Trojan.PackedNET.2780
TrendMicro TrojanSpy.Win32.RISEPRO.YXEDCZ
Trapmine malicious.high.ml.score
FireEye Generic.mg.6d78e0311bb641bb
Sophos Troj/MSIL-TCZ
Ikarus Trojan.MSIL.Crypt
Google Detected
Avira TR/AD.Nekark.aebfs
MAX malware (ai score=81)
Kingsoft MSIL.Trojan-Spy.Stealer.gen
Gridinsoft Malware.Win32.RisePro.tr
Xcitium Malware@#2z579z1lsmjd8
Microsoft Trojan:MSIL/Vidar.RPX!MTB
ViRobot Trojan.Win.Z.Vidar.2252936
ZoneAlarm HEUR:Trojan-Spy.MSIL.Stealer.gen
GData Trojan.GenericKD.72237184
Varist W32/ABRisk.FHSX-2609
AhnLab-V3 Trojan/Win.PWSX-gen.C5607432
DeepInstinct MALICIOUS
VBA32 TScope.Trojan.MSIL
Malwarebytes Spyware.Vidar
Panda Trj/Chgt.AD
TrendMicro-HouseCall TrojanSpy.Win32.RISEPRO.YXEDCZ
Tencent Win32.Trojan.FalseSign.Wimw
SentinelOne Static AI - Malicious PE
Fortinet MSIL/Kryptik.ALHK!tr
AVG Win32:PWSX-gen [Trj]