Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Jan. 3, 2025, 5:53 p.m.	Jan. 3, 2025, 5:59 p.m.

Size	112.5KB
Type	PE32 executable (console) Intel 80386, for MS Windows
MD5	`b7e00e7be81fefb7c57f2e5f9ba53310`
SHA256	`4d2af9283f59dd98dc1852a5213d5092dd832c3e797c7ee57908fa9ff122983d`
CRC32	`15A45F51`
ssdeep	`3072:rtwm5FikJSWy/Z5H3/nWSWyCsu2Z8mx6tWyEJQJW8chJeE:rWmPiKSBnVu2Z8zXt4JeE`
Yara	Malicious_Library_Zero - Malicious_Library PE_Header_Zero - PE File Signature Malicious_Packer_Zero - Malicious Packer IsPE32 - (no description) Generic_Malware_Zero - Generic Malware UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

vnc.exe "C:\Users\test22\AppData\Local\Temp\vnc.exe"
2576

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 56 AntiVirus engines on VirusTotal as malicious (50 out of 56 events)

Bkav	W32.Common.DA4A577B
Lionic	Trojan.Win32.Tinukebot.7!c
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.Tinynuke
Skyhigh	BehavesLike.Win32.Generic.ch
ALYac	Generic.Tinukebot.1.7FD095A4
Cylance	Unsafe
VIPRE	Generic.Tinukebot.1.7FD095A4
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	Generic.Tinukebot.1.7FD095A4
K7GW	Trojan ( 0050f9fa1 )
K7AntiVirus	Trojan ( 0050f9fa1 )
Arcabit	Generic.Tinukebot.1.7FD095A4
VirIT	Trojan.Win32.Genus.XLT
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Tinukebot.B
APEX	Malicious
Avast	Win32:MalwareX-gen [Trj]
ClamAV	Win.Malware.Tinukebot-10031688-0
Kaspersky	HEUR:Trojan-Banker.Win32.TinyNuke.gen
Alibaba	TrojanBanker:Win32/TinyNuke.0a8008c0
MicroWorld-eScan	Generic.Tinukebot.1.7FD095A4
Rising	Trojan.TinyNuke!1.B70D (CLASSIC)
Emsisoft	Generic.Tinukebot.1.7FD095A4 (B)
F-Secure	Trojan.TR/AVI.TinyNuke.xbdrr
Zillya	Trojan.Tinukebot.Win32.358
TrendMicro	TROJ_TINUKE.SM1
McAfeeD	ti!4D2AF9283F59
CTX	exe.trojan.tinynuke
Sophos	Mal/Generic-S
SentinelOne	Static AI - Malicious PE
FireEye	Generic.mg.b7e00e7be81fefb7
Google	Detected
Avira	TR/AVI.TinyNuke.xbdrr
Antiy-AVL	Trojan[Banker]/Win32.TinyNuke
Kingsoft	malware.kb.a.936
Microsoft	Trojan:Win32/Wacatac.B!ml
ViRobot	Trojan.Win.Z.Tinukebot.115200
GData	Generic.Tinukebot.1.7FD095A4
Varist	W32/Agent.JDK.gen!Eldorado
AhnLab-V3	Trojan/Win.Tinuke.C5684702
Acronis	suspicious
McAfee	Artemis!B7E00E7BE81F
DeepInstinct	MALICIOUS
Malwarebytes	Malware.AI.2411681091
Ikarus	Trojan.Win32.Tinukebot
TrendMicro-HouseCall	TROJ_TINUKE.SM1
Tencent	Trojan.Win32.Agent.16001546

vnc.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All