Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Aug. 14, 2024, 10:50 a.m.	Aug. 14, 2024, 10:54 a.m.

Size	48.0KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`a7ed4ba445aa61c4632dd6579c212bf5`
SHA256	`91fb355fdc173c40fa77f8a252031d6bc32fab91c5e5573da28044494691c820`
CRC32	`BCA1CC1E`
ssdeep	`768:2u62dT9slTJWUhDuzmo2qLGdFx4mMaYc13WOAo0E0brMIYLECgNREeo7Hkc1KXc9:2u62dT9We2ZamecoOA1brM6CgAHkSpdX`
Yara	PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer Is_DotNET_EXE - (no description) Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult AsyncRat - AsyncRat Payload IsPE32 - (no description) UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 53 AntiVirus engines on VirusTotal as malicious (50 out of 53 events)

Bkav	W32.AIDetectMalware.CS
Elastic	malicious (high confidence)
CAT-QuickHeal	Trojan.IgenericFC.S14890850
Skyhigh	BehavesLike.Win32.Generic.pm
ALYac	Gen:Variant.Jalapeno.657
Cylance	Unsafe
VIPRE	Gen:Variant.Jalapeno.657
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 005678321 )
BitDefender	Gen:Variant.Jalapeno.657
K7GW	Trojan ( 005678321 )
Cybereason	malicious.445aa6
Arcabit	Trojan.Jalapeno.657
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/AsyncRAT.A
APEX	Malicious
McAfee	Fareit-FZT!A7ED4BA445AA
Avast	Win32:DropperX-gen [Drp]
ClamAV	Win.Packed.Razy-9625918-0
Kaspersky	HEUR:Backdoor.MSIL.Crysan.gen
MicroWorld-eScan	Gen:Variant.Jalapeno.657
Rising	Trojan.AntiVM!1.CF63 (CLASSIC)
Emsisoft	Gen:Variant.Jalapeno.657 (B)
F-Secure	Heuristic.HEUR/AGEN.1305744
DrWeb	Trojan.Siggen9.56514
TrendMicro	Backdoor.MSIL.ASYNCRAT.SMXSR
McAfeeD	Real Protect-LS!A7ED4BA445AA
FireEye	Generic.mg.a7ed4ba445aa61c4
Sophos	Troj/AsyncRat-B
SentinelOne	Static AI - Malicious PE
Google	Detected
Avira	HEUR/AGEN.1305744
MAX	malware (ai score=88)
Kingsoft	malware.kb.c.1000
Microsoft	Backdoor:MSIL/AsyncRat.AD!MTB
ZoneAlarm	HEUR:Backdoor.MSIL.Crysan.gen
GData	MSIL.Trojan.PSE.1BITXMO
Varist	W32/Samas.B.gen!Eldorado
AhnLab-V3	Malware/Win32.RL_Generic.C4269477
BitDefenderTheta	Gen:NN.ZemsilF.36810.dm0@auysLjb
DeepInstinct	MALICIOUS
VBA32	OScope.Backdoor.MSIL.Crysan
Malwarebytes	Generic.Malware.AI.DDS
Ikarus	Backdoor.AsyncRat
Panda	Trj/GdSda.A
Tencent	Trojan.Msil.Agent.zap
huorong	Backdoor/Crysan.a
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.CFQ!tr

stub.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All