Summary | ZeroBOX

Category	Machine	Started	Completed
FILE	s1_win7_x6401	May 2, 2025, 5:52 p.m.	May 2, 2025, 5:56 p.m.

Size	273.5KB
Type	PE32+ executable (GUI) x86-64, for MS Windows
MD5	`f2497f7c1f59d261fb9b24931fb09164`
SHA256	`61b08477414108ef94b073994f704f3dff7f48e6aa51d40d3ca8ecc3705bf0c5`
CRC32	`2475DF41`
ssdeep	`3072:wngIpDUA5MxfSAJvoveEE0bWgR2wgULiA4Enkrus3Id4IJHvu5TszfmbQbvvx5h/:wnfElove10av9ULiBEkwmI4abvomc6`
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description) Malicious_Library_Zero - Malicious_Library Generic_Malware_Zero - Generic Malware OS_Processor_Check_Zero - OS Processor Check UPX_Zero - UPX packed file

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
No hosts contacted.

No Suricata Alerts

No Suricata TLS

Bkav	W64.AIDetectMalware
CAT-QuickHeal	cld.trojan.agent
ALYac	Gen:Variant.Lazy.595614
Cylance	Unsafe
VIPRE	Gen:Variant.Lazy.595614
BitDefender	Gen:Variant.Lazy.595614
Arcabit	Trojan.Lazy.D9169E
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win64/Agent.FQM
Avast	MalwareX-gen [Trj]
Kaspersky	UDS:DangerousObject.Multi.Generic
Alibaba	Trojan:Win64/Generic.293736f1
MicroWorld-eScan	Gen:Variant.Lazy.595614
Rising	Trojan.Udochka!8.12267 (TFE:5:lyKTgQA84Q)
Emsisoft	Gen:Variant.Lazy.595614 (B)
McAfeeD	ti!61B084774141
CTX	exe.unknown.lazy
Sophos	Mal/Generic-S
Google	Detected
Antiy-AVL	Trojan/Win32.Udochka
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Lazy.595614
AhnLab-V3	Trojan/Win.Wacatac.C5743856
McAfee	Artemis!F2497F7C1F59
DeepInstinct	MALICIOUS
Malwarebytes	Generic.Malware/Suspicious
Ikarus	Trojan.Win64.Agent
Tencent	Win64.Trojan.Agent.Ngil
AVG	MalwareX-gen [Trj]
alibabacloud	Trojan:Win/Wacapew.C9nj

dd.exe