Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | May 12, 2021, 12:05 p.m. | May 12, 2021, 12:14 p.m. |
-
-
AntTool.exe C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\AntTool.exe
1160
-
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
164.124.101.2 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | .ndata |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\AntTool.exe |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libgomp-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libfx4.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libatomic_64-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libatomic-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libwinpthread_64-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libwinpthread-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libgraph23.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libgomp_64-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\AntTool.exe |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libatomic-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libgomp-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libwinpthread-1.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libgraph23.dll |
file | C:\Users\test22\AppData\Roaming\Programs\AntDownloadManager\libfx4.dll |
Bkav | W32.AIDetect.malware1 |
Elastic | malicious (high confidence) |
MicroWorld-eScan | Trojan.GenericKD.36741827 |
FireEye | Trojan.GenericKD.36741827 |
CAT-QuickHeal | Trojan.Hynamer |
ALYac | Trojan.GenericKD.36741827 |
Cylance | Unsafe |
Sangfor | Riskware.Win32.Wacapew.C |
K7AntiVirus | Trojan ( 0057ac811 ) |
BitDefender | Trojan.GenericKD.36741827 |
K7GW | Trojan ( 0057ac811 ) |
Arcabit | Trojan.Generic.D230A2C3 |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of Win32/Agent.ACYJ |
APEX | Malicious |
Avast | Win32:TrojanX-gen [Trj] |
Alibaba | Trojan:Win32/Redcap.1c42f774 |
Rising | Trojan.Generic!8.C3 (CLOUD) |
Ad-Aware | Trojan.GenericKD.36741827 |
Emsisoft | Trojan.GenericKD.36741827 (B) |
Comodo | Malware@#sma2h99kawn |
DrWeb | Trojan.Inject4.10834 |
VIPRE | Trojan.Win32.Generic!BT |
Avira | TR/Redcap.tmjfv |
Gridinsoft | Trojan.Win32.Agent.oa |
Microsoft | Program:Win32/Wacapew.C!ml |
GData | Trojan.GenericKD.36741827 |
Cynet | Malicious (score: 100) |
AhnLab-V3 | Trojan/Win.Generic.C4430181 |
McAfee | Artemis!B3D1B93214E4 |
Malwarebytes | Malware.AI.4287672864 |
Ikarus | Trojan.Win32.Agent |
Fortinet | W32/Agent.ACYJ!tr |
BitDefenderTheta | Gen:NN.ZedlaF.34684.eu4@aKxyY6pi |
AVG | Win32:TrojanX-gen [Trj] |