Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Aug. 12, 2024, 9:13 a.m.	Aug. 12, 2024, 9:31 a.m.

Size	188.5KB
Type	Zip archive data, at least v2.0 to extract
MD5	`645e2429a86455a0ee69b36efea5bc75`
SHA256	`a5f0b2bfe13c5bc84b867b74f847180052fb2d37285f8a4c9ebb6f2588f8a081`
CRC32	`28489506`
ssdeep	`3072:x4sJJH4iLTznmfJDFgApxqjY3ahwpvz+M1loLLUWHyrJi1jzgf1ViZK+IRwTQ:KsJN4iLWxDIjVhw1+KlUS1ihgK0j`
Yara	zip_file_format - ZIP file format

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Elastic	malicious (high confidence)
Cynet	Malicious (score: 99)
ALYac	Gen:Variant.Cerbu.210582
Malwarebytes	Malware.AI.4061415446
VIPRE	Gen:Variant.Cerbu.210582
K7AntiVirus	Trojan ( 005b508f1 )
BitDefender	Gen:Variant.Cerbu.210582
K7GW	Trojan ( 005b508f1 )
Arcabit	Trojan.Fragtor.D85793
ESET-NOD32	a variant of Win32/ShellcodeRunner.JZ
Avast	Win32:MalwareX-gen [Trj]
Kaspersky	VHO:Trojan.Win32.Agentb.gen
Emsisoft	Gen:Variant.Cerbu.210582 (B)
F-Secure	Trojan.TR/Redcap.wimkn
Zillya	Trojan.ShellcodeRunner.Win32.4164
FireEye	Gen:Variant.Cerbu.210582
Sophos	ATK/RustLdr-A
Google	Detected
Avira	TR/Redcap.wimkn
MAX	malware (ai score=87)
Antiy-AVL	Trojan/Win32.Agent
ZoneAlarm	VHO:Trojan.Win32.Agentb.gen
GData	Win32.Malware.ShellcodeLoader.B
AhnLab-V3	Trojan/Win.Generic.R659457
Tencent	Malware.Win32.Gencirc.14133b0d
huorong	Trojan/Loader.bs
AVG	Win32:MalwareX-gen [Trj]

5d1918fb-0773-41a9-bb01-64672c4b33a9