Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Oct. 14, 2024, 10:39 a.m.	Oct. 14, 2024, 10:46 a.m.

Size	30.7MB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`2e1e5df2401546676205befe6668ed88`
SHA256	`15de8f29eaf5dbf78c94318c11f87e519380c66d094966113bb56622faf5152f`
CRC32	`A60828BE`
ssdeep	`98304:peJXXYAnEqCChDxA2BPrhZ7TRCXCVVae:MPnZW2B1Z3p`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer DllRegisterServer_Zero - execute regsvr32.exe IsPE32 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

section

.symtab

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.WinGo.4!c
Skyhigh	Artemis
ALYac	Gen:Variant.Lazy.606929
Cylance	Unsafe
VIPRE	Gen:Variant.Lazy.606929
Sangfor	Dropper.Win32.Lazy.Vudg
BitDefender	Gen:Variant.Lazy.606929
Arcabit	Trojan.Lazy.D942D1
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of WinGo/TrojanDropper.Agent.EK
Avast	FileRepMalware [Misc]
Kaspersky	UDS:DangerousObject.Multi.Generic
MicroWorld-eScan	Gen:Variant.Lazy.606929
Rising	Dropper.Agent!1.10205 (CLASSIC)
Emsisoft	Gen:Variant.Lazy.606929 (B)
F-Secure	Trojan.TR/AVI.Agent.rozff
TrendMicro	TrojanSpy.Win32.LUMMASTEALER.YXEJNZ
McAfeeD	ti!15DE8F29EAF5
Trapmine	malicious.high.ml.score
CTX	exe.trojan.wingo
Sophos	Troj/Inject-JQY
FireEye	Gen:Variant.Lazy.606929
Google	Detected
Avira	TR/AVI.Agent.rozff
Gridinsoft	Trojan.Win32.Agent.sa
Microsoft	Trojan:Win32/LummaStealer.RP!MTB
GData	Gen:Variant.Lazy.606929
Varist	W32/ABTrojan.CVXI-7116
DeepInstinct	MALICIOUS
VBA32	Dropper.Wingo.Heur
Ikarus	Win32.Outbreak
Panda	Trj/CI.A
TrendMicro-HouseCall	TrojanSpy.Win32.LUMMASTEALER.YXEJNZ
Fortinet	W32/Agent.EK!tr
AVG	FileRepMalware [Misc]
Paloalto	generic.ml
alibabacloud	Trojan[dropper]:Multi/LummaStealer.RX8PHU

MyGuests.exe