ZendEngine.png| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6401 | April 8, 2021, 5:55 p.m. | April 8, 2021, 6:27 p.m. |
-
cmd.exe "C:\Windows\System32\cmd.exe" /c start /wait "odvLiAETPAwT" C:\Users\test22\AppData\Local\Temp\ZendEngine.png
1332
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| No hosts contacted. | ||
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| Sangfor | Trojan.Generic-PS.Save.d075c8a1 |
| ESET-NOD32 | PowerShell/Kryptik.BX |
| Kaspersky | HEUR:Trojan.PowerShell.Agent.gen |
| ZoneAlarm | HEUR:Trojan.PowerShell.Agent.gen |
| Rising | Trojan.Kryptik!8.8 (TOPIS:E0:hXO0hPoK4XF) |