Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	May 11, 2024, 7:27 p.m.	May 11, 2024, 7:44 p.m.

Size	45.0KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`503d8173c0d8d38e05dead2de759a1d4`
SHA256	`51f3f7d8ac847527e0652b7841b3f37844b24f1e5b206af23debd479b8aa6a86`
CRC32	`E1233F26`
ssdeep	`768:puwpFTAY3IQWUe9jqmo2qLoKjPGaG6PIyzjbFgX3i2XXf9r1BDZ6x:puwpFTA4/2xKTkDy3bCXSIXl3d6x`
Yara	AsyncRat - AsyncRat Payload Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer Is_DotNET_EXE - (no description) IsPE32 - (no description) Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 59 AntiVirus engines on VirusTotal as malicious (50 out of 59 events)

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.AsyncRAT.m!c
CAT-QuickHeal	Trojan.IgenericFC.S14890850
Skyhigh	BehavesLike.Win32.Fareit.pm
ALYac	Generic.AsyncRAT.Marte.B.D565CA73
Cylance	unsafe
Zillya	Trojan.Agent.Win32.1334603
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 005678321 )
BitDefender	Trojan.GenericKD.72709296
K7GW	Trojan ( 005678321 )
Arcabit	Trojan.Generic.D45574B0
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	Downloader
Elastic	Windows.Generic.Threat
ESET-NOD32	a variant of MSIL/AsyncRAT.A
APEX	Malicious
Avast	Win32:DropperX-gen [Drp]
ClamAV	Win.Packed.Razy-9625918-0
Kaspersky	HEUR:Backdoor.MSIL.Crysan.gen
Alibaba	Backdoor:MSIL/AsyncRat.326df54c
NANO-Antivirus	Trojan.Win32.Crysan.kmnsjw
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
MicroWorld-eScan	Trojan.GenericKD.72709296
Rising	Trojan.AntiVM!1.CF63 (CLASSIC)
Emsisoft	Trojan.GenericKD.72709296 (B)
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Trojan.Siggen9.56514
BitDefenderTheta	Gen:NN.ZemsilF.36804.cm0@aKzIvlh
TrendMicro	Backdoor.MSIL.ASYNCRAT.SMXSR
Trapmine	suspicious.low.ml.score
FireEye	Generic.mg.503d8173c0d8d38e
Sophos	Troj/AsyncRat-B
Ikarus	Backdoor.AsyncRat
Jiangmin	Backdoor.MSIL.gguk
Google	Detected
Avira	TR/Dropper.Gen
MAX	malware (ai score=88)
Antiy-AVL	Trojan[Backdoor]/MSIL.Crysan
Kingsoft	MSIL.Backdoor.Crysan.gen
Gridinsoft	Trojan.Win32.AsyncRAT.tr
Microsoft	Backdoor:MSIL/AsyncRat.AD!MTB
ViRobot	Trojan.Win.Z.Asyncrat.46080.UA
ZoneAlarm	HEUR:Backdoor.MSIL.Crysan.gen
GData	MSIL.Backdoor.DCRat.D
Varist	W32/Samas.B.gen!Eldorado
AhnLab-V3	Trojan/Win32.RL_Generic.R358277
McAfee	Fareit-FZT!503D8173C0D8
DeepInstinct	MALICIOUS
VBA32	OScope.Backdoor.MSIL.Crysan

AsyncClient.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All