Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	June 19, 2024, 1:59 p.m.	June 19, 2024, 1:59 p.m.

Size	1.9MB
Type	PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`3bc246a912d5b2c5db59f9421808d1eb`
SHA256	`6cb68779ade039ea456828403f3527c9d21e8b41d317ac8db74538f169a8e547`
CRC32	`0D07E4A8`
ssdeep	`24576:PKCAfqgqQ9pCsJmCs+3i/B95z0iIMbHQNhGyr+jG0TiJniclW:7gqcpCsJmCsDU+HQN4pTi`
PDB Path	System.Data.Linq.pdb
Yara	Malicious_Library_Zero - Malicious_Library IsDLL - (no description) PE_Header_Zero - PE File Signature IsPE32 - (no description) UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check Is_DotNET_DLL - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

pdb_path

System.Data.Linq.pdb

Skyhigh	Artemis
VIPRE	Gen:Heur.MSIL.Krypt.6
Sangfor	Trojan.Msil.Agent.Vlmt
BitDefender	Gen:Heur.MSIL.Krypt.6
Arcabit	Trojan.MSIL.Krypt.6
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of MSIL/Injector.WFE
McAfee	Artemis!3BC246A912D5
Avast	Win32:InjectorX-gen [Trj]
Alibaba	Trojan:MSIL/Injector.b7717b86
MicroWorld-eScan	Gen:Heur.MSIL.Krypt.6
Emsisoft	Gen:Heur.MSIL.Krypt.6 (B)
DrWeb	Trojan.InjectNET.17
McAfeeD	ti!6CB68779ADE0
FireEye	Gen:Heur.MSIL.Krypt.6
Ikarus	Trojan.MSIL.Injector
Google	Detected
MAX	malware (ai score=83)
Microsoft	Program:Win32/Wacapew.C!ml
GData	Gen:Heur.MSIL.Krypt.6
AhnLab-V3	Trojan/Win.Generic.C5639625
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.3663264508
TrendMicro-HouseCall	TROJ_GEN.R002H09FD24
SentinelOne	Static AI - Malicious PE
Fortinet	MSIL/WFE!tr
AVG	Win32:InjectorX-gen [Trj]
alibabacloud	Trojan:MSIL/Krypt.Gen

new_image.jpg.exe