Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Aug. 12, 2024, 8:54 a.m.	Aug. 12, 2024, 9:23 a.m.

Size	2.3MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`683e536311d04b4dc012ce3cfe30fdc1`
SHA256	`9b74671e34b59f5a7244fde4fe7ae854fd2c580348e3b572a451a090040c0bf6`
CRC32	`F8C95158`
ssdeep	`49152:Iz0eqU/GdTFZxHLpAac8WifoX28Z5jln8ezLxs9AtWvLQ1XkpP1T7vXmbNzXV8q:Iz84Z5jtnxJtWTQ1UnPk8q`
PDB Path	C:\Users\ItsMe\Desktop\sources paid\working\shxdow r6\shxdow new\x64\Release\DirectX11.pdb
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Antivirus - Contains references to security software UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

pdb_path

C:\Users\ItsMe\Desktop\sources paid\working\shxdow r6\shxdow new\x64\Release\DirectX11.pdb

Bkav	W32.Common.43559BCC
Lionic	Trojan.Win32.GameHack.4!c
Elastic	malicious (high confidence)
ALYac	Gen:Variant.Mikey.166872
Cylance	Unsafe
VIPRE	Trojan.GenericKD.73824839
Sangfor	Trojan.Win32.Gamehack.V2rv
BitDefender	Trojan.GenericKD.73824839
Cybereason	malicious.311d04
Arcabit	Trojan.Mikey.D28BD8
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/GameHack_AGen.OZ potentially unsafe
APEX	Malicious
MicroWorld-eScan	Trojan.GenericKD.73824839
Rising	PUA.GameHack!8.223 (CLOUD)
Emsisoft	Trojan.GenericKD.73824839 (B)
McAfeeD	ti!9B74671E34B5
FireEye	Trojan.GenericKD.73824839
Sophos	Generic Reputation PUA (PUA)
SentinelOne	Static AI - Suspicious PE
Google	Detected
MAX	malware (ai score=82)
Antiy-AVL	RiskWare/Win64.Gamehack
Microsoft	Program:Win32/Wacapew.C!ml
GData	Trojan.GenericKD.73824839
AhnLab-V3	Trojan/Win.Generic.C5626274
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.4148488880
Ikarus	Win32.Outbreak
TrendMicro-HouseCall	TROJ_GEN.R002H09ET24
Yandex	Riskware.Agent!B6xe6HiB8Jk
Fortinet	PossibleThreat.PALLAS.H
CrowdStrike	win/malicious_confidence_60% (W)

r6users.exe