popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

DtsApo4Service.exe

.NET framework(MSIL) PE32 PE File .NET EXE
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us April 8, 2024, 6:38 p.m. April 8, 2024, 6:38 p.m.
Size 2.4MB
Type PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5 457c53a8c4076f6ad84b3df50eeaed40
SHA256 5fe211041b58d0588133f7d7dde18867cfc77dd1d87c5af1222edc91ac882665
CRC32 E442E6E0
ssdeep 49152:qLVfUh2tObNV72FN/J0PX6slSlrt1Vi4Nt1P9BCwB+RsEHU/nqBC:WVw2sbNVO/2PK7/1YYt1zGqEHU/oC
Yara
  • PE_Header_Zero - PE File Signature
  • Is_DotNET_EXE - (no description)
  • IsPE32 - (no description)
  • Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section {u'size_of_data': u'0x0025a200', u'virtual_address': u'0x00002000', u'entropy': 7.979627924780039, u'name': u'.text', u'virtual_size': u'0x0025a044'} entropy 7.97962792478 description A section with a high entropy has been found
entropy 0.999170296619 description Overall entropy of this PE file is high
Bkav W32.AIDetectMalware.CS
Lionic Trojan.Win32.Crysan.m!c
Elastic malicious (high confidence)
ALYac Trojan.GenericKD.72239951
Cylance unsafe
VIPRE Trojan.GenericKD.72239951
Sangfor Trojan.Msil.Agent.Vx6x
BitDefender Trojan.GenericKD.72239951
Arcabit Trojan.Generic.D44E4B4F
VirIT Trojan.Win32.MSIL_Heur.A
Symantec ML.Attribute.HighConfidence
ESET-NOD32 a variant of MSIL/Kryptik.ALHF
APEX Malicious
Avast Win32:DropperX-gen [Drp]
Kaspersky HEUR:Backdoor.MSIL.Crysan.gen
Alibaba Trojan:MSIL/Kryptik.e4e34507
NANO-Antivirus Trojan.Win32.Coroxy.klgoxp
MicroWorld-eScan Trojan.GenericKD.72239951
Rising Backdoor.Crysan!8.10ECA (CLOUD)
Emsisoft Trojan.GenericKD.72239951 (B)
F-Secure Trojan.TR/AD.Coroxy.irpil
TrendMicro TROJ_FRS.0NA104D524
Trapmine malicious.moderate.ml.score
FireEye Generic.mg.457c53a8c4076f6a
Sophos Mal/Generic-S
Ikarus Backdoor.MSIL.Agent
Google Detected
Avira TR/AD.Coroxy.irpil
MAX malware (ai score=89)
Antiy-AVL Trojan[Backdoor]/MSIL.Remcos
Kingsoft Win32.Troj.Unknown.a
Gridinsoft Malware.Win32.Gen.tr
Microsoft Trojan:MSIL/AgentTesla.RPA
ZoneAlarm HEUR:Backdoor.MSIL.Crysan.gen
GData Win32.Trojan.Agent.V11J87
Varist W32/ABRisk.MCWC-2487
AhnLab-V3 Malware/Win.Generic.C5608505
BitDefenderTheta Gen:NN.ZemsilF.36802.wo0@aG@05Hn
DeepInstinct MALICIOUS
Malwarebytes Trojan.MalPack
Panda Trj/Chgt.AD
TrendMicro-HouseCall TROJ_FRS.0NA104D524
Tencent Msil.Backdoor.Crysan.Kajl
SentinelOne Static AI - Malicious PE
MaxSecure Trojan.Malware.74418669.susgen
Fortinet PossibleThreat
AVG Win32:DropperX-gen [Drp]
CrowdStrike win/malicious_confidence_100% (W)
alibabacloud Backdoor:MSIL/Crysan.gen