Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Sept. 5, 2024, 3:38 p.m.	Sept. 5, 2024, 3:43 p.m.

Size	9.0KB
Type	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5	`16834e676f3c8e4de9435cefe2846b50`
SHA256	`080be64f9d322aad325f29c6f90f03f5ea394a24affcdd9b6c2fc834d96e5a6f`
CRC32	`5D891C05`
ssdeep	`48:q0kV3zU9G4aNVh7XphlhEF57/ncjJZeCOOtJnw2OxPwybOE:vDIKk9Wow20P`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsDLL - (no description) Swrort - Trojan:Win32/Meterpreter IsPE32 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 55 AntiVirus engines on VirusTotal as malicious (50 out of 55 events)

Bkav	W32.AIDetectMalware
Elastic	Windows.Trojan.Metasploit
Cynet	Malicious (score: 100)
Skyhigh	GenericRXSC-HC!16834E676F3C
ALYac	Generic.ShellCode.Marte.3.966DF44A
Cylance	Unsafe
VIPRE	Generic.ShellCode.Marte.3.966DF44A
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 005aac371 )
BitDefender	Generic.ShellCode.Marte.3.966DF44A
K7GW	Trojan ( 005aac371 )
Arcabit	Generic.ShellCode.Marte.3.966DF44A
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Inject.NJV
APEX	Malicious
McAfee	GenericRXSC-HC!16834E676F3C
Avast	Win32:MsfShell-C [Trj]
Kaspersky	HEUR:Trojan.Win32.Generic
NANO-Antivirus	Trojan.Win32.Inject4.jozwdf
MicroWorld-eScan	Generic.ShellCode.Marte.3.966DF44A
Emsisoft	Generic.ShellCode.Marte.3.966DF44A (B)
F-Secure	Trojan:W32/Payload.A
DrWeb	Trojan.Inject4.52780
Zillya	Trojan.Inject.Win32.318161
McAfeeD	ti!080BE64F9D32
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.16834e676f3c8e4d
Sophos	ATK/FatRat-J
SentinelOne	Static AI - Malicious PE
Jiangmin	Trojan.Invader.eil
Webroot	W32.Trojan.Gen
Google	Detected
Avira	TR/Hijacker.Gen
MAX	malware (ai score=81)
Antiy-AVL	Trojan/Win32.Invader
Kingsoft	Win32.Trojan.Generic.a
Microsoft	Trojan:Win32/Meterpreter.RPZ!MTB
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Win32.Trojan.PSE.19A8VV2
Varist	W32/Injector.BOQ.gen!Eldorado
AhnLab-V3	Trojan/Win.HC.R560701
BitDefenderTheta	Gen:NN.ZedlaF.36812.au4@aW56DOoi
TACHYON	Trojan/W32.Invader.9216
DeepInstinct	MALICIOUS
VBA32	BScope.Trojan.Invader
Malwarebytes	Inject.Exploit.Shellcode.DDS
Ikarus	Trojan.Win32.Inject
Panda	Trj/Genetic.gen
Tencent	Win32.Trojan.Hijacker.Szfl
Yandex	Trojan.Invader!+ww66SLDBtw

UpdaterLOC.dll

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All