Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6402	July 3, 2024, 5:16 p.m.	July 3, 2024, 5:17 p.m.

Size	71.0MB
Type	PE32+ executable (DLL) (GUI) x86-64, for MS Windows
MD5	`8fb5e72a31680189d9a529b49962a0b1`
SHA256	`4f9ef9f4b90d8e0928a36369e90d912b1f4a3b5afc173cddecb1790aa06cdc74`
CRC32	`C41A4882`
ssdeep	`1572864:jSGOD5R6/+fkA7n5gpO6TlY0C1U9j+JsTiV/Dn5+s24M/:jpODH63A75gpNhY0Cy96Js+VLJU`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsDLL - (no description) IsPE64 - (no description) UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

section

_RDATA

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.NukeSped.a!c
CAT-QuickHeal	Trojan.Agent
Skyhigh	Artemis
ALYac	Backdoor.Agent.status
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 005947171 )
K7GW	Trojan ( 005947171 )
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win64/NukeSped.KP
Avast	Win64:APTX-gen [Trj]
Kaspersky	Trojan-Downloader.Win64.Mint.bam
Alibaba	Trojan:Win64/NukeSped.d298f49d
Rising	Trojan.NukeSped!8.3184 (CLOUD)
F-Secure	Trojan.TR/NukeSped.dggcy
McAfeeD	ti!4F9EF9F4B90D
Sophos	Mal/Generic-S
Google	Detected
Avira	TR/NukeSped.dggcy
MAX	malware (ai score=99)
Antiy-AVL	Trojan[Downloader]/Win64.Mint
Kingsoft	Win32.Troj.Unknown.a
Xcitium	Malware@#3q33yszf9i0vw
Microsoft	Trojan:Win32/Casdet!rfn
ViRobot	Trojan.Win.S.Lazarus.74494976
ZoneAlarm	Trojan-Downloader.Win64.Mint.bam
Varist	W64/ABTrojan.CIXV-6119
AhnLab-V3	Trojan/Win.Lazardoor.R592967
DeepInstinct	MALICIOUS
VBA32	Trojan.Win64.NukeSpeed
Panda	Trj/Chgt.AD
Tencent	Malware.Win32.Gencirc.1410be53
MaxSecure	Trojan.Malware.266281036.susgen
AVG	Win64:APTX-gen [Trj]
Paloalto	generic.ml
alibabacloud	Trojan[downloader]:Win/NukeSped.KX

pconsnap.dll