popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

water.php

  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 March 18, 2021, 9:35 a.m. March 18, 2021, 9:35 a.m.
Size 433.0KB
Type PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
MD5 a4dc92b904b2b4b31960bf84614dad78
SHA256 162bfebce722e1d9d4a4b67762b58c2129d5f76db40d101f2a4ab1438a795bc5
CRC32 6C83FE9E
ssdeep 12288:ZBQ+hBancZ5k5F1cPIesC4z77VGLkujjV6Mm:ZBhracZKC4QLkujjo
Yara
  • PE_Header_Zero - PE File Signature Zero
  • IsPE32 - (no description)
  • IsDLL - (no description)
  • IsWindowsGUI - (no description)
  • HasDebugData - DebugData Check
  • HasRichSignature - Rich Signature Check

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Bkav W32.AIDetect.malware2
Elastic malicious (high confidence)
MicroWorld-eScan Trojan.GenericKD.36516677
Qihoo-360 Win32/Heur.Generic.HygB8ucA
McAfee RDN/TrickBot
CrowdStrike win/malicious_confidence_60% (D)
ESET-NOD32 a variant of Generik.BFQGXAR
APEX Malicious
Paloalto generic.ml
Kaspersky Trojan.Win32.Trickpak.eo
BitDefender Trojan.GenericKD.36516677
Avast Win32:Malware-gen
Ad-Aware Trojan.GenericKD.36516677
McAfee-GW-Edition Artemis!Trojan
FireEye Generic.mg.a4dc92b904b2b4b3
Ikarus Win32.Outbreak
GData Trojan.GenericKD.36516677
Webroot W32.Trojan.Gen
Avira TR/AD.TrickBot.pprzd
Kingsoft Win32.Troj.Generic_a.a.(kcloud)
AegisLab Trojan.Win32.Poison.tnUo
ZoneAlarm Trojan.Win32.Trickpak.eo
Microsoft Program:Win32/Wacapew.C!ml
Cynet Malicious (score: 90)
ALYac Trojan.Trickster.Gen
MAX malware (ai score=88)
Rising Trojan.Trickpak!8.122C7 (CLOUD)
Fortinet W32/Generik.BFQGXAR!tr
BitDefenderTheta Gen:NN.ZedlaF.34628.Bq4@aOKBlVl
AVG Win32:Malware-gen