popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

TDPremium.exe

Generic Malware Malicious Library UPX ftp PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Oct. 14, 2024, 10:45 a.m. Oct. 14, 2024, 10:49 a.m.
Size 1.1MB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 53f178ea0c14b901bc30cc22687d384d
SHA256 f2b707c3cf25fd49571811650b22df7f568b5cdc0c83988094599d0ece04e6c2
CRC32 AB6DB189
ssdeep 24576:bgnFJEsu/wiCE7ljNGuhTVU7wgqWJGOyNjbBnT5FW:0nFJEsuoh6WRnGBl1nN8
PDB Path C:\TD-Files\TD\FiveM\FiveM Premium 4\tyhlu\x64\Build\Tyhlu-external.pdb
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • ftp_command - ftp command
  • IsPE64 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
131.153.76.130 Active Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path C:\TD-Files\TD\FiveM\FiveM Premium 4\tyhlu\x64\Build\Tyhlu-external.pdb
host 131.153.76.130
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.Nekark.4!c
Cynet Malicious (score: 100)
Skyhigh BehavesLike.Win64.Downloader.th
ALYac Gen:Variant.Lazy.457518
Cylance Unsafe
VIPRE Gen:Variant.Lazy.457518
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (W)
BitDefender Gen:Variant.Lazy.457518
K7GW Trojan ( 005affd91 )
K7AntiVirus Trojan ( 005affd91 )
Arcabit Trojan.Lazy.D6FB2E
Symantec Trojan.Gen.MBT
Elastic malicious (high confidence)
ESET-NOD32 a variant of Win64/GenKryptik.GSCO
APEX Malicious
Avast Win64:CrypterX-gen [Trj]
Kaspersky HEUR:Trojan.Win32.Generic
Alibaba Trojan:Win64/GenKryptik.2d5742f0
NANO-Antivirus Trojan.Win64.Nekark.kqbeov
MicroWorld-eScan Gen:Variant.Lazy.457518
Rising Trojan.Vigorf!8.EAEA (TFE:5:EgYafl2csHI)
Emsisoft Gen:Variant.Lazy.457518 (B)
F-Secure Trojan.TR/AD.Nekark.elxlr
Zillya Trojan.GenKryptik.Win64.37532
TrendMicro TROJ_GEN.R002C0XGE24
McAfeeD ti!F2B707C3CF25
CTX exe.trojan.genkryptik
Sophos Mal/Generic-S
SentinelOne Static AI - Malicious PE
FireEye Gen:Variant.Lazy.457518
Jiangmin Trojan.Generic.hszys
Webroot W32.Trojan.Gen
Google Detected
Avira TR/AD.Nekark.elxlr
Antiy-AVL Trojan/Win64.GenKryptik
Kingsoft Win32.Trojan.Generic.a
Gridinsoft Ransom.Win64.Sabsik.sa
Xcitium Malware@#3fkwdgdybzhpo
Microsoft Trojan:Win32/Phonzy.A!ml
ViRobot Trojan.Win.Z.Genkryptik.1200640
ZoneAlarm HEUR:Trojan.Win32.Generic
GData Gen:Variant.Lazy.457518
AhnLab-V3 Trojan/Win.Generic.C5650854
Acronis suspicious
McAfee Artemis!53F178EA0C14
DeepInstinct MALICIOUS
VBA32 Trojan.Win64.GenKryptik
Malwarebytes Trojan.Downloader