Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Oct. 18, 2024, 10:07 a.m.	Oct. 18, 2024, 10:15 a.m.

Size	100.0KB
Type	PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5	`5156dd825ef6a5a11c47034f1ec48c9d`
SHA256	`54f5603c31f360beaf872181bf60e0c65c86b2d1c256408991cf6e3d0f362d32`
CRC32	`63517F55`
ssdeep	`1536:KGE+YqDg5t/yMYBYKDQ0H1xOksEQT4bpMBRVMAyXcFoFOpx:BFGt/yMTI91xOkKpMAyXzOpx`
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description) Generic_Malware_Zero - Generic Malware

swift-nobypass.exe "C:\Users\test22\AppData\Local\Temp\swift-nobypass.exe"
1880

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Bkav	W64.AIDetectMalware
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.Havocp.S33863897
Skyhigh	BehavesLike.Win64.Backdoor.cm
ALYac	Generic.Trojan.Havokiz.Marte.D.82F025B5
Cylance	Unsafe
VIPRE	Generic.Trojan.Havokiz.Marte.D.82F025B5
CrowdStrike	win/malicious_confidence_90% (D)
BitDefender	Generic.Trojan.Havokiz.Marte.D.82F025B5
Arcabit	Generic.Trojan.Havokiz.Marte.D.82F025B5
Symantec	ML.Attribute.HighConfidence
Elastic	Windows.Generic.Threat
ESET-NOD32	a variant of Win64/Havoc.L
APEX	Malicious
Avast	Win64:Evo-gen [Trj]
ClamAV	Win.Malware.Havoc-10019364-0
Kaspersky	HEUR:Backdoor.Win64.C2.h
MicroWorld-eScan	Generic.Trojan.Havokiz.Marte.D.82F025B5
Emsisoft	Generic.Trojan.Havokiz.Marte.D.82F025B5 (B)
F-Secure	Heuristic.HEUR/AGEN.1368308
DrWeb	Trojan.Siggen29.14420
CTX	exe.trojan.havokiz
Sophos	ATK/Havoc-G
Ikarus	Trojan.Win64.Havoc
FireEye	Generic.Trojan.Havokiz.Marte.D.82F025B5
Google	Detected
Avira	HEUR/AGEN.1368308
Antiy-AVL	Trojan/Win64.Havoc.e
Microsoft	Trojan:Win32/Havoc.C
GData	Generic.Trojan.Havokiz.Marte.D.82F025B5
Varist	W64/Havoc.A.gen!Eldorado
McAfee	Agent-FYC!5156DD825EF6
Malwarebytes	HackTool.Havoc
Tencent	Trojan.Win64.Havoc.16001250
huorong	HVM:Trojan/Havoc.a
Fortinet	W64/Havoc.L!tr
AVG	Win64:Evo-gen [Trj]

swift-nobypass.exe