Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | April 2, 2021, 10:17 a.m. | April 2, 2021, 10:18 a.m. |
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | .MPRESS1 |
section | .MPRESS2 |
section | 0 |
section | 1 |
section | {u'size_of_data': u'0x00108200', u'virtual_address': u'0x00001000', u'entropy': 7.999806136028592, u'name': u'.MPRESS1', u'virtual_size': u'0x0034f000'} | entropy | 7.99980613603 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x00181c00', u'virtual_address': u'0x00351000', u'entropy': 7.5737142732317295, u'name': u' 0', u'virtual_size': u'0x00181a56'} | entropy | 7.57371427323 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x001d5000', u'virtual_address': u'0x004d3000', u'entropy': 7.677663805290031, u'name': u' 1', u'virtual_size': u'0x001d4e70'} | entropy | 7.67766380529 | description | A section with a high entropy has been found | |||||||||
entropy | 0.955894916702 | description | Overall entropy of this PE file is high |
Bkav | W32.AIDetect.malware2 |
MicroWorld-eScan | Trojan.GenericKD.46008209 |
McAfee | Artemis!78CDCED17F8C |
Cylance | Unsafe |
K7AntiVirus | Trojan ( 0052964f1 ) |
K7GW | Trojan ( 0052964f1 ) |
CrowdStrike | win/malicious_confidence_80% (W) |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of Win32/GenCBL.AFY |
APEX | Malicious |
Paloalto | generic.ml |
Kaspersky | Trojan-PSW.MSIL.Agensla.uny |
BitDefender | Trojan.GenericKD.46008209 |
AegisLab | Trojan.MSIL.Agensla.i!c |
Avast | FileRepMalware |
Ad-Aware | Trojan.GenericKD.46008209 |
Sophos | Mal/Generic-S |
DrWeb | Trojan.PWS.Siggen2.64147 |
McAfee-GW-Edition | Artemis!Trojan |
FireEye | Generic.mg.78cdced17f8cde33 |
Webroot | W32.Trojan.Msil.Agensla |
Gridinsoft | Trojan.Heur!.01010021 |
ZoneAlarm | Trojan-PSW.MSIL.Agensla.uny |
Microsoft | Trojan:Win32/Hynamer.C!ml |
Cynet | Malicious (score: 100) |
AhnLab-V3 | Trojan/Win.Generic.C4398670 |
Acronis | suspicious |
MAX | malware (ai score=89) |
VBA32 | BScope.Trojan.Yakes |
Malwarebytes | Malware.Heuristic.1003 |
Rising | Malware.Undefined!8.C (CLOUD) |
eGambit | Unsafe.AI_Score_61% |
BitDefenderTheta | Gen:NN.ZexaF.34662.@x1@aq4xteiO |
AVG | FileRepMalware |