requem.exe| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6401 | June 24, 2021, 7:29 p.m. | June 24, 2021, 8:04 p.m. |
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| 164.124.101.2 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| section | _RDATA |
| resource name | CHEAT |
| section | {u'size_of_data': u'0x0001ba00', u'virtual_address': u'0x00279000', u'entropy': 7.5142745734285725, u'name': u'.rsrc', u'virtual_size': u'0x0001b968'} | entropy | 7.51427457343 | description | A section with a high entropy has been found | |||||||||
| MicroWorld-eScan | Gen:Variant.Razy.867050 |
| ALYac | Gen:Variant.Razy.867050 |
| Sangfor | Riskware.Win32.Wacapew.C |
| Alibaba | TrojanDropper:Win64/Generic.95dac47b |
| Cybereason | malicious.72f1af |
| Arcabit | Trojan.Razy.DD3AEA |
| Symantec | Trojan.Gen.MBT |
| APEX | Malicious |
| Paloalto | generic.ml |
| BitDefender | Gen:Variant.Razy.867050 |
| Avast | Win64:Malware-gen |
| Ad-Aware | Gen:Variant.Razy.867050 |
| McAfee-GW-Edition | BehavesLike.Win64.Dropper.vh |
| FireEye | Generic.mg.6200da5ba37f01a1 |
| Emsisoft | Gen:Variant.Razy.867050 (B) |
| SentinelOne | Static AI - Malicious PE |
| MAX | malware (ai score=86) |
| Microsoft | Trojan:Win32/Wacatac.B!ml |
| AegisLab | Trojan.Win32.Razy.4!c |
| GData | Gen:Variant.Razy.867050 |
| Cynet | Malicious (score: 100) |
| McAfee | Artemis!6200DA5BA37F |
| Malwarebytes | Malware.AI.1900690424 |
| TrendMicro-HouseCall | TROJ_GEN.R002H09FO21 |
| Ikarus | Trojan-Dropper.Win64.Agent |
| MaxSecure | Trojan.Malware.300983.susgen |
| Fortinet | W32/PossibleThreat |
| AVG | Win64:Malware-gen |
| CrowdStrike | win/malicious_confidence_60% (W) |