Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Sept. 3, 2024, 9:27 a.m.	Sept. 3, 2024, 9:33 a.m.

Size	22.0KB
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`8e9d1161d84aa416108c23f8d457a633`
SHA256	`b9b78b3ca1860242e9cd9294e5e2d63a637e0b086b1e30dfad31c1080ed14ed6`
CRC32	`31A8258F`
ssdeep	`384:IuPJRlNhSP00zehDBG41lI3Vf4f1s/3YP1D23NWqd:pPJRlNhSP00AdhIB4ffPc3cq`
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description) UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 55 AntiVirus engines on VirusTotal as malicious (50 out of 55 events)

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.ShellcodeRunner.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 99)
Skyhigh	BehavesLike.Win64.Injector.mm
McAfee	Artemis!8E9D1161D84A
Cylance	Unsafe
VIPRE	Gen:Variant.Zusy.556753
Sangfor	Trojan.Win64.Shellcoderunner.Vzbk
K7AntiVirus	Trojan ( 00595ee81 )
BitDefender	Gen:Variant.Zusy.556753
K7GW	Trojan ( 00595ee81 )
Cybereason	malicious.1d84aa
Arcabit	Trojan.Zusy.D87ED1
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/ShellcodeRunner.AO
APEX	Malicious
Avast	Win64:HacktoolX-gen [Trj]
Kaspersky	Trojan.Win64.Agent.dhhal
Alibaba	Trojan:Win64/ShellcodeRunner.12d27718
MicroWorld-eScan	Gen:Variant.Zusy.556753
Rising	Trojan.ShellcodeRunner!8.6166 (TFE:5:GNzgW5uk77Q)
Emsisoft	Gen:Variant.Zusy.556753 (B)
F-Secure	Trojan.TR/Swrort.kudvo
Zillya	Trojan.ShellcodeRunner.Win64.2815
TrendMicro	TROJ_GEN.R002C0DE824
McAfeeD	ti!B9B78B3CA186
Trapmine	malicious.moderate.ml.score
FireEye	Gen:Variant.Zusy.556753
Sophos	Mal/Generic-S
Webroot	W32.Trojan.TR.Swrort.gouuf
Google	Detected
Avira	TR/Swrort.kudvo
MAX	malware (ai score=86)
Antiy-AVL	Trojan/Win64.ShellcodeRunner
Kingsoft	Win64.Trojan.Agent.dhhal
Microsoft	Trojan:Win64/ShellcodeRunner.ASDF!MTB
ZoneAlarm	Trojan.Win64.Agent.dhhal
GData	Gen:Variant.Zusy.556753
Varist	W64/Agent.IMP.gen!Eldorado
AhnLab-V3	Trojan/Win.ShellcodeRunner.R641641
DeepInstinct	MALICIOUS
Malwarebytes	Trojan.ShellCode.Runner
Ikarus	Trojan.Win64.Shellcoderunner
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_GEN.R002C0DE824
Tencent	Malware.Win32.Gencirc.14158053
Yandex	Trojan.ShellcodeRunner!Vfi+PqJ7IWE
huorong	Trojan/ShellLoader.df
MaxSecure	Trojan.Malware.248767962.susgen

Launcher.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All