Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Jan. 13, 2025, 2:59 p.m.	Jan. 13, 2025, 4:43 p.m.

Size	1.2MB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`dd36f6f79e68d5e54c75527db2da97ad`
SHA256	`3030ba393865e41fee490205bf5873b4041275a8830d5e764693771fec2bd35e`
CRC32	`961B73CE`
ssdeep	`12288:2iQnVXYD4TNwzBcgXn0dE/xmiNrP64F78O9PpctLMbl0UVh4OsYX0bLDHOM5p:KNw1iS/EiNb64F78yPd+WDsYX0bLzOCp`
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

No Suricata Alerts

No Suricata TLS

section

.00cfg

Bkav	W64.AIDetectMalware
Lionic	Trojan.Win32.Agent.Y!c
Cynet	Malicious (score: 99)
CAT-QuickHeal	Trojan.Ghanarava.1736739340da97ad
Skyhigh	Trojan-FWHP!DD36F6F79E68
Cylance	Unsafe
VIPRE	Gen:Heur.Mint.Zard.25
Sangfor	Trojan.Win64.Kryptik.Va1s
CrowdStrike	win/malicious_confidence_90% (W)
BitDefender	Gen:Heur.Mint.Zard.25
K7GW	Trojan ( 005af85d1 )
K7AntiVirus	Trojan ( 005af85d1 )
Arcabit	Trojan.Mint.Zard.25
Symantec	ML.Attribute.HighConfidence
Elastic	Windows.Generic.Threat
ESET-NOD32	a variant of Win64/Kryptik.EDF
APEX	Malicious
Avast	MalwareX-gen [Trj]
Kaspersky	Trojan.Win32.Agent.xbvczs
Alibaba	Trojan:Win64/Coinminer.4d0cf05d
MicroWorld-eScan	Gen:Heur.Mint.Zard.25
Rising	Trojan.Kryptik!8.8 (CLOUD)
Emsisoft	Gen:Heur.Mint.Zard.25 (B)
F-Secure	Heuristic.HEUR/AGEN.1370827
McAfeeD	ti!3030BA393865
CTX	exe.trojan.kryptik
Sophos	Mal/Generic-S
FireEye	Gen:Heur.Mint.Zard.25
Webroot	W32.Trojan.Gen
Google	Detected
Avira	HEUR/AGEN.1370827
Kingsoft	Win32.Trojan.Agent.xbvczs
Gridinsoft	Trojan.Win64.CoinMiner.sa
Microsoft	Trojan:Win64/Coinminer.RB!MTB
GData	Gen:Heur.Mint.Zard.25
Varist	W64/ABTrojan.DKIZ-0707
McAfee	Trojan-FWHP!DD36F6F79E68
DeepInstinct	MALICIOUS
Ikarus	Win32.Outbreak
Panda	Trj/GdSda.A
Tencent	Trojan.Win64.Kryptik.16001249
huorong	Trojan/Injector.bzk
Fortinet	W64/GenKryptik.GQCB!tr
AVG	MalwareX-gen [Trj]
Paloalto	generic.ml
alibabacloud	Miner:Win/Mint.Zdsq

3.exe