popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

66f410932765c_videoshaper.exe

Generic Malware Malicious Library Admin Tool (Sysinternals etc ...) UPX Malicious Packer PE File dll OS Processor Check PE32 DllRegisterServer
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Sept. 30, 2024, 11:18 a.m. Sept. 30, 2024, 11:51 a.m.
Size 5.5MB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 927f42900da344192bdfea8e3325d631
SHA256 cee3ebb7e1f0dcbb9d34e16e7a7aaf40d8a20ede56a9435ee440effe3e2cd4e2
CRC32 988B4FBA
ssdeep 49152:yLDNdHNC1lkP26fSZbg/IFetZEN541YotxhJRrjWdECkTBMOzpvRnE:ANdHNCvugi1BQ1Ozp
Yara
  • Malicious_Library_Zero - Malicious_Library
  • Admin_Tool_IN_Zero - Admin Tool Sysinternals
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • DllRegisterServer_Zero - execute regsvr32.exe
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
164.124.101.2 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .symtab
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.Lumma.4!c
ALYac Trojan.GenericKD.74208341
VIPRE Trojan.GenericKD.74208341
Sangfor Dropper.Win32.Agent.Vrp1
CrowdStrike win/malicious_confidence_60% (D)
BitDefender Trojan.GenericKD.74208341
K7GW Trojan ( 005b9b2a1 )
K7AntiVirus Trojan ( 005b9b2a1 )
Arcabit Trojan.Generic.D46C5455
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 a variant of WinGo/TrojanDropper.Agent.EK
APEX Malicious
Avast Win32:Malware-gen
Alibaba TrojanPSW:Win32/Lumma.7ecf826c
MicroWorld-eScan Trojan.GenericKD.74208341
Emsisoft Trojan.GenericKD.74208341 (B)
F-Secure Trojan.TR/AVI.Agent.muouy
DrWeb Trojan.PWS.Lumma.457
TrendMicro TrojanSpy.Win32.LUMMASTEALER.YXEI1Z
McAfeeD ti!CEE3EBB7E1F0
Trapmine malicious.moderate.ml.score
CTX exe.trojan.lumma
Sophos Troj/Inject-JQY
FireEye Trojan.GenericKD.74208341
Webroot W32.Trojan.GenKD
Avira TR/AVI.Agent.muouy
Antiy-AVL Trojan/Win32.Agent
Kingsoft Win32.Trojan-PSW.Lumma.cda
Gridinsoft Spy.Win32.Gen.tr
Xcitium Malware@#1xw23sr3grwr4
Microsoft Trojan:Win32/Znyonm
GData Trojan.GenericKD.74208341
Varist W32/ABTrojan.FFPR-7692
AhnLab-V3 Malware/Win.Malware-gen.C5675796
McAfee Artemis!927F42900DA3
DeepInstinct MALICIOUS
VBA32 BScope.TrojanPSW.Lumma
Ikarus Trojan-Spy.LummaStealer
Panda Trj/Chgt.AD
TrendMicro-HouseCall TrojanSpy.Win32.LUMMASTEALER.YXEI1Z
Tencent Win32.Trojan-QQPass.QQRob.Ncnw
huorong Trojan/Generic!AA62070F15EFA779
Fortinet W32/Agent.EK!tr
AVG Win32:Malware-gen
Paloalto generic.ml
alibabacloud Trojan[dropper]:Multi/Lumma.cbb