Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6402 | July 9, 2021, 8:04 p.m. | July 9, 2021, 8:06 p.m. |
-
mshta.exe "C:\Windows\System32\mshta.exe" C:\Users\test22\AppData\Local\Temp\3RdYB0yFDbNXezPE.jpg.hta
2412
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
117.18.232.200 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Symantec | Backdoor.ASync!gm |
DrWeb | PowerShell.Dropper.31 |
Rising | Trojan.Injector/PS!1.D2AD (CLASSIC) |
host | 117.18.232.200 |