Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	April 12, 2024, 3:03 p.m.	April 12, 2024, 3:04 p.m.

Size	14.0MB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`db228bd6bc9ae9640fcc9e720b2baa23`
SHA256	`add90a551545059c3656f24ec3cfa755e2a60906299a178f8ba0be2a4800543a`
CRC32	`CB7E353D`
ssdeep	`98304:yMZ6EC11lw8jGkXI0hb1yUdtpOJaoH7P5S8ugjxGU37Z:LOe8jGvrZ`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer Is_DotNET_EXE - (no description) IsPE32 - (no description) UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 53 AntiVirus engines on VirusTotal as malicious (50 out of 53 events)

Bkav	W32.Common.4FE05B89
Skyhigh	Artemis!Trojan
ALYac	DeepScan:Generic.Qasar.B.E5F0D308
Cylance	unsafe
VIPRE	DeepScan:Generic.Qasar.B.E5F0D308
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	DeepScan:Generic.Qasar.B.E5F0D308
K7GW	Trojan ( 005703f41 )
K7AntiVirus	Trojan ( 005703f41 )
Arcabit	DeepScan:Generic.Qasar.B.E5F0D308
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Agent.CLQ
APEX	Malicious
McAfee	Artemis!DB228BD6BC9A
Avast	MSIL:Quasar-A [Rat]
ClamAV	Win.Malware.Generic-9883083-0
Kaspersky	HEUR:Trojan.Win32.Generic
Alibaba	Backdoor:MSIL/Quasar.7746b030
NANO-Antivirus	Trojan.Win32.AVI.klcsct
MicroWorld-eScan	DeepScan:Generic.Qasar.B.E5F0D308
Rising	Backdoor.Quasar!1.E5F1 (CLASSIC)
Emsisoft	DeepScan:Generic.Qasar.B.E5F0D308 (B)
F-Secure	Trojan.TR/AVI.Quasar.hljph
DrWeb	Trojan.PWS.DiscordNET.51
Zillya	Trojan.Agent.Win32.3905445
TrendMicro	TROJ_GEN.R03BC0DD424
Trapmine	suspicious.low.ml.score
FireEye	Generic.mg.db228bd6bc9ae964
Sophos	Mal/Generic-S
Ikarus	Trojan-Spy.Agent
Google	Detected
Avira	TR/AVI.Quasar.hljph
Antiy-AVL	Trojan[Backdoor]/MSIL.Quasar
Kingsoft	Win32.Trojan.Generic.a
Gridinsoft	Trojan.Win32.Agent.sa
Microsoft	Backdoor:MSIL/Quasar.GG!MTB
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	MSIL.Trojan-Stealer.AnarchyGrabber.C
Varist	W32/MSIL_Troj.BTX.gen!Eldorado
AhnLab-V3	Backdoor/Win32.QuasarRAT.R341693
BitDefenderTheta	Gen:NN.ZemsilF.36802.@p0@aOt8kLh
DeepInstinct	MALICIOUS
VBA32	Trojan.MSIL.Quasar.Heur
Malwarebytes	Generic.Malware.AI.DDS
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R03BC0DD424
Tencent	Win32.Trojan.Generic.Uimw
SentinelOne	Static AI - Malicious PE

gQiNGl31.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All