Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Feb. 7, 2025, 2:11 p.m.	Feb. 7, 2025, 2:23 p.m.

Size	82.0KB
Type	PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
MD5	`f0328a0d719b2a80e950b562ca0d8f80`
SHA256	`9badd465f31d5917842d308b87a806288fec44424b85458427c3984be5019482`
CRC32	`37997017`
ssdeep	`1536:f/WPxp+NdK3kCNoG0pE1M6IbJu996zCisi7k1:3W3+ypNoUjIbk996eilk`
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
45.33.6.223	Active	Moloch

No Suricata Alerts

No Suricata TLS

Time & API	Arguments	Status	Return	Repeated
GlobalMemoryStatusEx Feb. 7, 2025, 2:04 p.m.		1	1	0

section

.ofh

host

45.33.6.223

Lionic	Trojan.Win32.Caynamer.4!c
Cynet	Malicious (score: 100)
CAT-QuickHeal	cld.trojan.multi
Skyhigh	BehavesLike.Win64.Generic.mm
ALYac	Trojan.GenericKD.75771014
Cylance	Unsafe
VIPRE	Trojan.GenericKD.75771014
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	Trojan.GenericKD.75771014
Arcabit	Trojan.Generic.D4842C86
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
APEX	Malicious
Avast	Win64:MalwareX-gen [Trj]
Kaspersky	UDS:DangerousObject.Multi.Generic
MicroWorld-eScan	Trojan.GenericKD.75771014
Rising	Malware.Generic!8.BA4C (CLOUD)
Emsisoft	Trojan.GenericKD.75771014 (B)
McAfeeD	ti!9BADD465F31D
CTX	exe.trojan.caynamer
Sophos	Mal/Generic-S
SentinelOne	Static AI - Suspicious PE
FireEye	Generic.mg.f0328a0d719b2a80
Google	Detected
Antiy-AVL	Trojan/Win32.Caynamer
Kingsoft	malware.kb.a.931
Microsoft	Trojan:Win32/Caynamer.A!ml
GData	Trojan.GenericKD.75771014
Varist	W64/ABTrojan.PGTP-7179
AhnLab-V3	Trojan/Win.Generic.C5726525
McAfee	Artemis!F0328A0D719B
DeepInstinct	MALICIOUS
VBA32	Trojan.Caynamer
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/Chgt.AD
Fortinet	W32/PossibleThreat
AVG	Win64:MalwareX-gen [Trj]
Paloalto	generic.ml
alibabacloud	Software:Multi/Caynamer.A9nj

sas.exe