Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Oct. 17, 2024, 2:30 p.m.	Oct. 17, 2024, 2:30 p.m.

Size	75.0KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`4c2a997fa2661fbfe14db1233b16364c`
SHA256	`c2a299f988158d07a573a21621b00b1577b7c232f91c1442ba30d272e4414c5d`
CRC32	`5D5D99F2`
ssdeep	`1536:pnqs5zV1jXp4csu1Pzs+AJKZbDjlnOl4KpqC3DOjFt/zN:Bn5nZJ/ZbnsWKpf3DOjHN`
Yara	PE_Header_Zero - PE File Signature Antivirus - Contains references to security software Is_DotNET_EXE - (no description) IsPE32 - (no description) UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.XWorm.4!c
MicroWorld-eScan	Gen:Variant.Jalapeno.2302
Skyhigh	FE_Backdoor_MSIL_XWorm_1
ALYac	Gen:Variant.Jalapeno.2302
Cylance	Unsafe
VIPRE	Gen:Variant.Jalapeno.2302
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	Gen:Variant.Jalapeno.2302
K7GW	Trojan ( 005aa5f01 )
K7AntiVirus	Trojan ( 005aa5f01 )
Arcabit	Trojan.Jalapeno.D8FE
VirIT	Trojan.Win32.MSIL_Heur.B
Symantec	Trojan.Nancrat
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Agent.DWN
APEX	Malicious
Avast	Win32:RATX-gen [Trj]
Kaspersky	HEUR:Backdoor.MSIL.Crysan.gen
Alibaba	Backdoor:MSIL/XWorm.64f25570
Rising	Backdoor.njRAT!1.9E49 (CLASSIC)
Emsisoft	Gen:Variant.Jalapeno.2302 (B)
F-Secure	Trojan.TR/Spy.Gen
DrWeb	BackDoor.SiggenNET.71
Zillya	Trojan.Agent.Win32.3926760
TrendMicro	Backdoor.Win32.XWORM.YXEDVZ
McAfeeD	Real Protect-LS!4C2A997FA266
Trapmine	malicious.moderate.ml.score
CTX	exe.trojan.msil
Sophos	Troj/Agent-BJXT
SentinelOne	Static AI - Malicious PE
FireEye	Generic.mg.4c2a997fa2661fbf
Jiangmin	Backdoor.MSIL.gjld
Google	Detected
Avira	TR/Spy.Gen
Kingsoft	malware.kb.c.1000
Gridinsoft	Ransom.Win32.Bladabindi.sa
Xcitium	Malware@#gle9pnqu6khw
Microsoft	Trojan:MSIL/XWorm.C!MTB
ViRobot	Trojan.Win.Z.Agent.76800.HE
ZoneAlarm	HEUR:Backdoor.MSIL.Crysan.gen
GData	MSIL.Backdoor.XWormRAT.A
Varist	W32/MSIL_Agent.BUD.gen!Eldorado
AhnLab-V3	Backdoor/Win.AsyncRat.C5360693
McAfee	FE_Backdoor_MSIL_XWorm_1
DeepInstinct	MALICIOUS
VBA32	Backdoor.MSIL.XWorm.gen
Malwarebytes	Backdoor.XWorm
Ikarus	Trojan.MSIL.Bladabindi

new.exe