Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	April 14, 2025, 10:30 a.m.	April 14, 2025, 10:33 a.m.

Size	225.0KB
Type	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
MD5	`7c9043f988eaf0a9698783c9f8e199d7`
SHA256	`4a218d8cc6d17bf0d142a50f935153f682d6d944741098c4300c165a18dcc527`
CRC32	`D81FB835`
ssdeep	`3072:XuPpTgKa2PbOZMXlZy9bcVnDYTAVvDt3ain4m7aaHoAYnP6aM:XuPtHPZy9bNTIvDtfrYk`
Yara	PE_Header_Zero - PE File Signature Win32_Trojan_PWS_Net_1_Zero - Win32 Trojan PWS .NET Azorult Is_DotNET_EXE - (no description) AsyncRat - AsyncRat Payload IsPE32 - (no description) Malicious_Packer_Zero - Malicious Packer OS_Processor_Check_Zero - OS Processor Check UPX_Zero - UPX packed file

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

File has been identified by 55 AntiVirus engines on VirusTotal as malicious (50 out of 55 events)

Bkav	W32.AIDetectMalware.CS
Lionic	Trojan.Win32.Crysan.m!c
CAT-QuickHeal	Backdoor.MsilFC.S13564499
Skyhigh	Fareit-FZT!7C9043F988EA
ALYac	Gen:Variant.AsyncRat.Marte.10
Cylance	Unsafe
VIPRE	Gen:Variant.AsyncRat.Marte.10
Sangfor	Suspicious.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
BitDefender	Gen:Variant.AsyncRat.Marte.10
K7GW	Trojan ( 005678321 )
K7AntiVirus	Trojan ( 005678321 )
Arcabit	Trojan.AsyncRat.Marte.10
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	Backdoor.ASync!g2
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/AsyncRAT.A
APEX	Malicious
Avast	Win32:MalwareX-gen [Drp]
ClamAV	Win.Packed.Razy-9625918-0
Kaspersky	HEUR:Backdoor.MSIL.Crysan.gen
Alibaba	Backdoor:MSIL/AsyncRat.24df9f6d
MicroWorld-eScan	Gen:Variant.AsyncRat.Marte.10
Rising	Trojan.AntiVM!1.CF63 (CLASSIC)
Emsisoft	Gen:Variant.AsyncRat.Marte.10 (B)
F-Secure	Heuristic.HEUR/AGEN.1360508
DrWeb	Trojan.Siggen9.56514
McAfeeD	Real Protect-LS!7C9043F988EA
Trapmine	malicious.moderate.ml.score
CTX	exe.trojan.msil
Sophos	Troj/AsyncRat-B
SentinelOne	Static AI - Malicious PE
Jiangmin	Backdoor.MSIL.gguk
Google	Detected
Avira	HEUR/AGEN.1360508
Kingsoft	malware.kb.c.996
Gridinsoft	Trojan.Win32.Packed.sa
Microsoft	Backdoor:MSIL/AsyncRat.AD!MTB
ZoneAlarm	Troj/AsyncRat-B
GData	MSIL.Trojan.PSE.1BITXMO
Varist	W32/MSIL_Troj.VJ.gen!Eldorado
AhnLab-V3	Trojan/Win32.RL_Generic.C3546893
McAfee	Fareit-FZT!7C9043F988EA
DeepInstinct	MALICIOUS
VBA32	OScope.Backdoor.MSIL.Crysan
Malwarebytes	Generic.Malware.AI.DDS
Ikarus	Backdoor.AsyncRat
Panda	Trj/CI.A
TrendMicro-HouseCall	Trojan.Win32.VSX.PE04C9V
Tencent	Trojan.Msil.Agent.zap

payload1.exe

Process Tree Toggle all

Network Toggle all

Suricata Toggle all

Suricata Alerts

Suricata TLS

Signatures Toggle All