popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

4n.exe

Generic Malware Hide_EXE Malicious Library UPX Malicious Packer PE File dll OS Processor Check PE32 DllRegisterServer
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Oct. 31, 2024, 6:10 p.m. Oct. 31, 2024, 6:14 p.m.
Size 19.3MB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 0680170d17b99321500944eb7deded51
SHA256 d4a2d9c10babdabd7bf16ee4773da3f82951c5741a682db002820deb6ff5eafd
CRC32 28EDAB19
ssdeep 196608:4ce3WrKkBP/xttbTk6v69c6rW+s0Sq+eHJMI0/:4cLf1xtt165rjRMz/
Yara
  • Malicious_Library_Zero - Malicious_Library
  • PE_Header_Zero - PE File Signature
  • Malicious_Packer_Zero - Malicious Packer
  • hide_executable_file - Hide executable file
  • DllRegisterServer_Zero - execute regsvr32.exe
  • IsPE32 - (no description)
  • Generic_Malware_Zero - Generic Malware
  • UPX_Zero - UPX packed file
  • OS_Processor_Check_Zero - OS Processor Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

section .symtab
Bkav W32.AIDetectMalware
Lionic Trojan.Win32.GenericKDQ.4!c
Skyhigh Artemis
ALYac QD:Trojan.GenericKDQ.2602F14C45
Cylance Unsafe
VIPRE QD:Trojan.GenericKDQ.2602F14C45
BitDefender QD:Trojan.GenericKDQ.2602F14C45
K7GW Trojan ( 005b9b1b1 )
K7AntiVirus Trojan ( 005b9b1b1 )
Arcabit QD:Trojan.GenericQ.2602F14C45
VirIT Trojan.Win32.Genus.WVS
Symantec ML.Attribute.HighConfidence
Elastic malicious (high confidence)
ESET-NOD32 a variant of WinGo/TrojanDropper.Agent.EK
Avast Win32:Malware-gen
Kaspersky Trojan.Win32.Injuke.okjn
Alibaba TrojanDropper:Win32/LummaStealer.5ca5e56a
MicroWorld-eScan QD:Trojan.GenericKDQ.2602F14C45
Rising Dropper.Agent!1.10426 (CLASSIC)
Emsisoft QD:Trojan.GenericKDQ.2602F14C45 (B)
F-Secure Trojan.TR/Redcap.ylcpx
TrendMicro TrojanSpy.Win32.LUMMASTEALER.YXEJ3Z
McAfeeD ti!D4A2D9C10BAB
Trapmine suspicious.low.ml.score
CTX exe.trojan.lummastealer
Sophos Troj/Inject-JQY
Ikarus Trojan-Dropper.WinGo.Agent
FireEye QD:Trojan.GenericKDQ.2602F14C45
Google Detected
Avira TR/Redcap.ylcpx
Antiy-AVL Trojan/Win32.LummaStealer
Kingsoft Win32.Trojan.Injuke.okjn
Microsoft Trojan:Win32/LummaStealer.RPA!MTB
GData QD:Trojan.GenericKDQ.2602F14C45
AhnLab-V3 Trojan/Win.LummaStealer.C5688773
McAfee Artemis!0680170D17B9
DeepInstinct MALICIOUS
Malwarebytes Trojan.Dropper.GO
Panda Trj/CI.A
TrendMicro-HouseCall TrojanSpy.Win32.LUMMASTEALER.YXEJ3Z
huorong Trojan/Injector.bxh
Fortinet W32/Agent.EK!tr
AVG Win32:Malware-gen
Paloalto generic.ml
alibabacloud Trojan[dropper]:Multi/Agent.EH