Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | July 10, 2021, 10:59 a.m. | July 10, 2021, 10:59 a.m. |
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
164.124.101.2 | Active | Moloch |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | .nv_fatb |
section | .nvFatBi |
section | _RDATA |
FireEye | Generic.mg.c6dedabf9eae985f |
ESET-NOD32 | a variant of Win64/CoinMiner.RH potentially unwanted |
ClamAV | Win.Coinminer.Generic-7165577-0 |
Kaspersky | not-a-virus:HEUR:RiskTool.Win64.Miner.b |
Avast | Win64:MiscX-gen [PUP] |
Sophos | Ethminer Ethereum Miner (PUA) |
SentinelOne | Static AI - Suspicious PE |
Microsoft | PUA:Win32/CoinMiner |
AhnLab-V3 | Win-Trojan/Miner3.Exp |
Malwarebytes | RiskWare.BitCoinMiner |
Ikarus | PUA.CoinMiner |
Fortinet | Riskware/CoinMiner |
AVG | Win64:MiscX-gen [PUP] |
Qihoo-360 | Win64/Miner.Generic.HgEASX8A |