Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Oct. 29, 2024, 5:08 p.m.	Oct. 29, 2024, 5:10 p.m.

Size	19.2MB
Type	PE32 executable (GUI) Intel 80386, for MS Windows
MD5	`5714fda573903cc3a216c135ae24317c`
SHA256	`dcebdabfa1a0cdbd79211415d000141b6ce923bce9817533c57a7c0450279259`
CRC32	`FCBE1FCC`
ssdeep	`98304:hI/c/Y0DXHIwD4ZEOYsmszYfynsCv33TOYUezsHeK2rdZ/FkgrQaK4zr0euLlCfa:hIN0rLMXyysCf3dzspC7LrLuxCfYKLk`
Yara	Malicious_Library_Zero - Malicious_Library Admin_Tool_IN_Zero - Admin Tool Sysinternals PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer DllRegisterServer_Zero - execute regsvr32.exe IsPE32 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

section

.symtab

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Lumma.1u!c
Cylance	Unsafe
Sangfor	Dropper.Win32.Agent.Vm6x
K7GW	Trojan ( 005b9b1b1 )
K7AntiVirus	Trojan ( 005b9b1b1 )
VirIT	Trojan.Win32.Genus.WVI
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of WinGo/TrojanDropper.Agent.EK
Avast	Win32:Malware-gen
Kaspersky	Trojan-PSW.Win32.Lumma.cef
Alibaba	TrojanDropper:Win32/Generic.5bde1825
Rising	Dropper.Agent!1.10205 (CLASSIC)
F-Secure	Trojan.TR/Redcap.cdtxw
TrendMicro	TrojanSpy.Win32.LUMMASTEALER.YXEITZ
McAfeeD	ti!DCEBDABFA1A0
Trapmine	malicious.moderate.ml.score
CTX	exe.trojan.lumma
Sophos	Troj/Inject-JQY
Google	Detected
Avira	TR/Redcap.cdtxw
Antiy-AVL	Trojan[Dropper]/Win32.Agent
Kingsoft	Win32.Trojan-PSW.Lumma.cef
Microsoft	Trojan:Win32/Wacatac.B!ml
ZoneAlarm	Trojan-PSW.Win32.Lumma.cef
Varist	W32/ABTrojan.SYAT-3679
AhnLab-V3	Trojan/Win.Redcap.C5687847
VBA32	Dropper.Wingo.Heur
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.1868976438
Ikarus	Trojan-Spy.LummaStealer
TrendMicro-HouseCall	TrojanSpy.Win32.LUMMASTEALER.YXEITZ
Tencent	Win32.Trojan-QQPass.QQRob.Hmnw
Fortinet	Adware/Agent
AVG	Win32:Malware-gen
Paloalto	generic.ml
alibabacloud	Trojan[dropper]:Multi/Lumma.cyj

Bybit.exe