Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Oct. 14, 2024, 10:35 a.m.	Oct. 14, 2024, 11:03 a.m.

Size	1.4MB
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`8b923746242130bc39f9566cf8ab60dc`
SHA256	`021f53c2328113f02db282d7bde017efcf807b1021173e497c06711a15d7f98f`
CRC32	`5045E8CB`
ssdeep	`24576:iJgvkMzSYAM9YSlbczEpQizfmQDc06WogeOfQr0W:itMzLAVStcdiT7FoR2A0W`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature IsPE64 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

section

_RDATA

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.GameHack.4!c
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_70% (W)
K7GW	Unwanted-Program ( 005b0e871 )
K7AntiVirus	Unwanted-Program ( 005b0e871 )
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win64/GameHack.IZ potentially unsafe
APEX	Malicious
Avast	FileRepMalware [Misc]
Rising	Trojan.Kryptik@AI.94 (RDML:x6XkuGPyNEtSwqrFE8UsLQ)
Zillya	Trojan.GameHack.Win64.600
McAfeeD	ti!021F53C23281
CTX	exe.trojan.generic
Webroot	W32.Trojan.GenKD
Antiy-AVL	Trojan/Win32.Znyonm
Gridinsoft	Trojan.Win64.Gen.sa
AhnLab-V3	Trojan/Win.Generic.C5604983
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.4238640698
Ikarus	Trojan.Win32.Generic
Panda	Trj/Chgt.AD
TrendMicro-HouseCall	TROJ_GEN.R002H09EG24
MaxSecure	Trojan.Malware.259638731.susgen
Fortinet	Riskware/Application
AVG	FileRepMalware [Misc]
Paloalto	generic.ml
alibabacloud	Trojan:Win/GameHack.690d4d02

nOjRmu66yYy4.exe