Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6403_us	Nov. 26, 2024, 2:07 p.m.	Nov. 26, 2024, 2:10 p.m.

Size	41.0MB
Type	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
MD5	`136d8eeb91c5fa33ff2049b441929788`
SHA256	`5667a73898a9134a736c6b56f25577ed3f9901dd17439de0dca545ac3cd1af16`
CRC32	`901C9509`
ssdeep	`24576:5z0wSWUTxMWv3LPO9dOV8kS8FTVuFK76/KvHM:5z0wSWUTxM2PO9wV8kS8FTV5n`
Yara	IsPE32 - (no description) PE_Header_Zero - PE File Signature

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Cynet	Malicious (score: 99)
Skyhigh	Artemis
ALYac	Trojan.GenericKD.74828151
Cylance	Unsafe
VIPRE	Trojan.GenericKD.74828151
CrowdStrike	win/malicious_confidence_60% (D)
BitDefender	Trojan.GenericKD.74828151
K7GW	Trojan ( 005bd4b31 )
K7AntiVirus	Trojan ( 005bd4b31 )
Arcabit	Trojan.Generic.D475C977
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Kryptik.HYHK
APEX	Malicious
Avast	Win32:MalwareX-gen [Trj]
MicroWorld-eScan	Trojan.GenericKD.74828151
Rising	Trojan.Kryptik!8.8 (CLOUD)
Emsisoft	Trojan.GenericKD.74828151 (B)
F-Secure	Trojan.TR/Crypt.Agent.qynvz
DrWeb	Trojan.Siggen30.5911
McAfeeD	ti!5667A73898A9
CTX	exe.trojan.kryptik
Sophos	Mal/Generic-S
FireEye	Trojan.GenericKD.74828151
Avira	TR/Crypt.Agent.qynvz
Antiy-AVL	Trojan/Win32.Kryptik
Xcitium	Malware@#1rtreqy9asmtq
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Trojan.GenericKD.74828151
Varist	W32/ABTrojan.YRJB-8347
AhnLab-V3	Malware/Win.Generic.C5695168
DeepInstinct	MALICIOUS
Ikarus	Trojan.Win32.Crypt
Panda	Trj/Chgt.AD
Tencent	Malware.Win32.Gencirc.14217206
MaxSecure	Trojan.Malware.302073983.susgen
Fortinet	W32/Kryptik.HYHK!tr
AVG	Win32:MalwareX-gen [Trj]
Paloalto	generic.ml
alibabacloud	Trojan:Win/Sabsik.FE

InstaIIer.exe