Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Aug. 11, 2024, 2:35 p.m.	Aug. 11, 2024, 3:07 p.m.

Size	2.3MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`6f09bbce72130d28fbb011ef4dc89668`
SHA256	`f530cb1156c4a1cacb373789ff9820eea1fc8016dc1afb501dc9373904b3e37b`
CRC32	`EA010962`
ssdeep	`49152:duSaW5XGpzVviGqC6A24A5sXDOeGsznMeLzLxs9AtWvLQ1XkpP1T7vXmbNzXVgqb:duyDeJnxJtWTQ1UnPkgq`
PDB Path	C:\Users\ItsMe\Desktop\New folder (3)\LOADER UPDATE ALL\shdw\shxdow new\x64\Release\DirectX11.pdb
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Antivirus - Contains references to security software UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

C:\Users\ItsMe\Desktop\New folder (3)\LOADER UPDATE ALL\shdw\shxdow new\x64\Release\DirectX11.pdb

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
ALYac	Gen:Variant.Cerbu.207394
VIPRE	Gen:Variant.Cerbu.207394
Sangfor	Trojan.Win32.Agent.Vz0a
BitDefender	Gen:Variant.Cerbu.207394
Cybereason	malicious.e72130
Arcabit	Trojan.Cerbu.D32A22
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/GameHack_AGen.OZ potentially unsafe
APEX	Malicious
MicroWorld-eScan	Gen:Variant.Cerbu.207394
Rising	PUA.GameHack!8.223 (CLOUD)
Emsisoft	Gen:Variant.Cerbu.207394 (B)
McAfeeD	ti!F530CB1156C4
FireEye	Gen:Variant.Cerbu.207394
Google	Detected
MAX	malware (ai score=89)
Microsoft	Program:Win32/Wacapew.C!ml
GData	Gen:Variant.Cerbu.207394
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.4148488880
Ikarus	Gen.Whisperer
TrendMicro-HouseCall	TROJ_GEN.R002H09H924
Fortinet	Adware/GameHack_AGen
CrowdStrike	win/malicious_confidence_70% (W)

tt111.exe