popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

FirewallLichh.exe

Downloader UPX ftp PE64 PE File OS Processor Check
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Oct. 21, 2024, 2:31 p.m. Oct. 21, 2024, 2:42 p.m.
Size 494.5KB
Type PE32+ executable (console) x86-64, for MS Windows
MD5 40f68d8b1be0f31f4aaf28dccf2f94cb
SHA256 98373f6033f41eff577963ce2a8cde8f09394e63de31c866ef5d265b714a9ed9
CRC32 B3465267
ssdeep 6144:Fi8fZ/nLeOlMAiyTI+BS6oIC2Dbe/MZWdLpID+RMcA2dHDad2m2+yFMCPaf1:FTfFOf8IyS4LDb6dlIDuzAIOboMCif1
PDB Path D:\BRONKZ BACKUP 16 02 2024\Loaders C# Bronkz Private Store\Loader Valorant Plus\x64\Release\EpicGames.pdb
Yara
  • Network_Downloader - File Downloader
  • PE_Header_Zero - PE File Signature
  • ftp_command - ftp command
  • IsPE64 - (no description)
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

pdb_path D:\BRONKZ BACKUP 16 02 2024\Loaders C# Bronkz Private Store\Loader Valorant Plus\x64\Release\EpicGames.pdb
Bkav W64.AIDetectMalware
Lionic Trojan.Win32.Generic.4!c
Cynet Malicious (score: 100)
Skyhigh BehavesLike.Win64.Downloader.gh
ALYac Trojan.GenericKD.74339629
Cylance Unsafe
VIPRE Trojan.GenericKD.74339629
Sangfor Trojan.Win32.Save.a
CrowdStrike win/malicious_confidence_100% (D)
BitDefender Trojan.GenericKD.74339629
Arcabit Trojan.Generic.D46E552D
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
APEX Malicious
Avast Win64:MalwareX-gen [Trj]
Kaspersky UDS:DangerousObject.Multi.Generic
MicroWorld-eScan Trojan.GenericKD.74339629
Emsisoft Trojan.GenericKD.74339629 (B)
DrWeb Trojan.Siggen29.55582
McAfeeD ti!98373F6033F4
CTX exe.trojan.generic
SentinelOne Static AI - Malicious PE
FireEye Trojan.GenericKD.74339629
Google Detected
Antiy-AVL Trojan/Win32.Agent
Microsoft Trojan:Win32/Wacatac.B!ml
GData Win64.Trojan.Agent.AHD2ZL
AhnLab-V3 Trojan/Win.CoinMiner.R673013
McAfee Artemis!40F68D8B1BE0
DeepInstinct MALICIOUS
Malwarebytes Generic.Malware/Suspicious
Ikarus Win32.Outbreak
Panda Trj/Chgt.AD
huorong HVM:Trojan/W64.Agent.bm
Fortinet W64/Agent.NV!tr
AVG Win64:MalwareX-gen [Trj]
Paloalto generic.ml
alibabacloud Software:Multi/Wacatac.B9nj