Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6402 | June 17, 2021, 1:43 p.m. | June 17, 2021, 1:48 p.m. |
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
172.217.25.14 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
description | Escalate priviledges | rule | Escalate_priviledges | ||||||
description | Run a KeyLogger | rule | KeyLogger | ||||||
description | (no description) | rule | DebuggerCheck__GlobalFlags | ||||||
description | (no description) | rule | DebuggerCheck__QueryInfo | ||||||
description | (no description) | rule | DebuggerHiding__Thread | ||||||
description | (no description) | rule | DebuggerHiding__Active | ||||||
description | (no description) | rule | ThreadControl__Context | ||||||
description | (no description) | rule | SEH__vectored | ||||||
description | Checks if being debugged | rule | anti_dbg | ||||||
description | Bypass DEP | rule | disable_dep |
host | 172.217.25.14 |
MicroWorld-eScan | Trojan.GenericKD.33547074 |
FireEye | Trojan.GenericKD.33547074 |
CAT-QuickHeal | Trojan.IGENERIC |
McAfee | Artemis!2E7E9709F953 |
Sangfor | Malware |
Arcabit | Trojan.Generic.D1FFE342 |
Avast | Win32:Malware-gen |
BitDefender | Trojan.GenericKD.33547074 |
Emsisoft | Trojan.GenericKD.33547074 (B) |
Comodo | Malware@#1gat2ztkrdye3 |
Invincea | heuristic |
Ikarus | Trojan.MSIL.Confuser |
Cyren | W32/Zbot.AQ.gen!Eldorado |
Antiy-AVL | Trojan/MSIL.Revenge |
Microsoft | Trojan:Win32/Occamy.C |
AegisLab | Trojan.ZIP.Generic.4!c |
GData | Trojan.GenericKD.33547074 |
BitDefenderTheta | Gen:NN.ZemsilF.34132.hu0@amwcJPb |
ALYac | Trojan.GenericKD.33547074 |
VBA32 | CIL.HeapOverride.Heur |
SentinelOne | DFI - Malicious Archive |
Fortinet | PossibleThreat |
AVG | Win32:Malware-gen |