Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Sept. 11, 2024, 10:36 a.m.	Sept. 11, 2024, 10:43 a.m.

Size	700.0KB
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`2616e7ec2d6c4b86a7fa1f4a762ae918`
SHA256	`23c2ebc8f9bac96b2fbbb9b00b457c48d65a9f66ec24fbfba339eeefd0539ad7`
CRC32	`C787C07D`
ssdeep	`6144:wKv8MuGM08RgAEe/XfMbAt0RAwK7el7nBFRDtPqw+dN6vGRGdijZ6:vZucAdPt0RAwKoRDtyw+dN6S4`
PDB Path	D:\Microsoft\repos\ConsoleApplication1\x64\Release\ConsoleApplication1.pdb
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

pdb_path

D:\Microsoft\repos\ConsoleApplication1\x64\Release\ConsoleApplication1.pdb

Lionic	Hacktool.Win32.Generic.3!c
Elastic	Windows.Hacktool.RingQ
CAT-QuickHeal	Hacktool.Agentagen
Sangfor	Hacktool.Win64.Agent.Vmnl
K7AntiVirus	Trojan ( 005b9f2a1 )
K7GW	Trojan ( 005b9f2a1 )
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win64/HackTool.Agent_AGen.AW
Avast	Win64:MalwareX-gen [Trj]
Alibaba	HackTool:Win64/Agent_AGen.3895470f
Rising	Malware.Undefined!8.C (TFE:5:sy5EmBBHpeS)
F-Secure	Trojan.TR/Redcap.xdvdm
McAfeeD	ti!23C2EBC8F9BA
Sophos	Generic Reputation PUA (PUA)
Google	Detected
Avira	TR/Redcap.xdvdm
Antiy-AVL	GrayWare/Win32.Wacapew
Microsoft	Program:Win32/Wacapew.C!ml
GData	Win64.Trojan.Agent.DI2U6A
McAfee	Artemis!2616E7EC2D6C
DeepInstinct	MALICIOUS
Malwarebytes	HackTool.Agent
Ikarus	Trojan.Win64.Krypt
Tencent	Malware.Win32.Gencirc.11c72d59
huorong	HackTool/RingQ
AVG	Win64:MalwareX-gen [Trj]
alibabacloud	HackTool:Win/Agent_AGen.AI

666.exe