Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Aug. 11, 2024, 2:32 p.m.	Aug. 11, 2024, 2:45 p.m.

Size	2.2MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`6814dfc0fa3a4df8128768115211e095`
SHA256	`08b9e027c1fb33cb4a45d14b1befc1a6e1b67a13502b6a626e90468901ced42b`
CRC32	`9E2609BA`
ssdeep	`49152:Ja2zLhlduav9AYJo4rULfKV7sVMJaMXCe8cknBnPUXkhY4Rxkce5m:Q2zoaWVC2nPUXkOYxkd5m`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Antivirus - Contains references to security software anti_vm_detect - Possibly employs anti-virtualization techniques UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
ALYac	Gen:Variant.Zusy.555247
Cylance	Unsafe
VIPRE	Gen:Variant.Zusy.555247
Sangfor	Trojan.Win64.Zusy.Vo70
BitDefender	Gen:Variant.Zusy.555247
Cybereason	malicious.0fa3a4
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/GameHack.JJ potentially unsafe
APEX	Malicious
McAfee	Artemis!6814DFC0FA3A
Avast	Win64:TrojanX-gen [Trj]
MicroWorld-eScan	Gen:Variant.Zusy.555247
Emsisoft	Gen:Variant.Zusy.555247 (B)
McAfeeD	ti!08B9E027C1FB
FireEye	Gen:Variant.Zusy.555247
Sophos	Generic Reputation PUA (PUA)
Google	Detected
MAX	malware (ai score=89)
Antiy-AVL	RiskWare/Win64.Gamehack.jj
Gridinsoft	Hack.Win64.GameHack.sa
Arcabit	Trojan.Zusy.D878EF
GData	Gen:Variant.Zusy.555247
AhnLab-V3	Malware/Win.Generic.R639555
DeepInstinct	MALICIOUS
Malwarebytes	Generic.Malware/Suspicious
Ikarus	Trojan.Win32.Generic
TrendMicro-HouseCall	TROJ_GEN.R002H09H924
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	Adware/GameHack
AVG	Win64:TrojanX-gen [Trj]
Paloalto	generic.ml

tt22.exe