Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	July 22, 2024, 5:47 p.m.	July 22, 2024, 5:50 p.m.

Size	20.7MB
Type	PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5	`478d0787cddfa1a31e3480d1612c91b7`
SHA256	`962bf6bb4e3d1ba6c2da00cc015467e49638db72614c63a779b9c37e0372cd36`
CRC32	`B294CFFE`
ssdeep	`98304:FpAKSfEy27N/dhKZF5NGjJvfMgJrtktFE5uUNkVrUAEix3JBylaMSFP6g:zSEy27NWZF3avfMxFE5uUErU5wFF`
Yara	DllRegisterServer_Zero - execute regsvr32.exe Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsPE64 - (no description) UPX_Zero - UPX packed file Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.Agent.Y!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 99)
Skyhigh	Artemis
Cylance	Unsafe
Sangfor	Trojan.Win32.Agent.Vof1
K7AntiVirus	Trojan ( 005b177d1 )
K7GW	Trojan ( 005b177d1 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of WinGo/Agent.VY
Paloalto	generic.ml
Kaspersky	Trojan.MSIL.Agent.qwiuhm
Rising	Trojan.Agent!1.F9CC (CLASSIC)
F-Secure	Trojan.TR/Agent.mmdfk
TrendMicro	Trojan.Win64.AMADEY.YXEGQZ
McAfeeD	ti!962BF6BB4E3D
Sophos	Generic Reputation PUA (PUA)
Ikarus	Trojan.WinGo.Agent
Google	Detected
Avira	TR/Agent.mmdfk
Antiy-AVL	Trojan/Win32.Wacatac
Gridinsoft	Trojan.Win64.Agent.cl
ZoneAlarm	Trojan.MSIL.Agent.qwiuhm
Varist	W64/Agent.IKW.gen!Eldorado
DeepInstinct	MALICIOUS
TrendMicro-HouseCall	Trojan.Win64.AMADEY.YXEGQZ
Tencent	Malware.Win32.Gencirc.1412c8b1
Fortinet	W64/Agent.VY!tr
alibabacloud	Trojan:Multi/Agent.VN

deepweb.exe