Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6403_us | July 22, 2021, 10:44 a.m. | July 22, 2021, 10:44 a.m. |
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | {u'size_of_data': u'0x0001ea00', u'virtual_address': u'0x00007000', u'entropy': 7.7406742673970355, u'name': u'.rdata', u'virtual_size': u'0x0001ec9e'} | entropy | 7.7406742674 | description | A section with a high entropy has been found | |||||||||
section | {u'size_of_data': u'0x00006400', u'virtual_address': u'0x00026000', u'entropy': 6.881183365279174, u'name': u'.data', u'virtual_size': u'0x00007f50'} | entropy | 6.88118336528 | description | A section with a high entropy has been found | |||||||||
entropy | 0.845272206304 | description | Overall entropy of this PE file is high |
Bkav | W32.AIDetect.malware2 |
Lionic | Riskware.Win32.Generic.1!c |
Elastic | malicious (high confidence) |
FireEye | Generic.mg.65638d179046f7ca |
Cylance | Unsafe |
Sangfor | Trojan.Win32.Save.a |
CrowdStrike | win/malicious_confidence_90% (W) |
BitDefenderTheta | Gen:NN.ZedlaF.34050.ku8@aSVjwvdi |
Symantec | ML.Attribute.HighConfidence |
APEX | Malicious |
Paloalto | generic.ml |
Kaspersky | UDS:Trojan.Multi.GenericML.xnet |
NANO-Antivirus | Virus.Win32.Gen.ccmw |
Avast | Win32:TrojanX-gen [Trj] |
Sophos | ML/PE-A |
McAfee-GW-Edition | BehavesLike.Win32.Drixed.cc |
eGambit | Unsafe.AI_Score_99% |
Microsoft | Trojan:Win32/Emotet.LK!ml |
ZoneAlarm | UDS:DangerousObject.Multi.Generic |
Cynet | Malicious (score: 100) |
Acronis | suspicious |
McAfee | Artemis!65638D179046 |
Rising | Trojan.Generic@ML.80 (RDML:DCYDhOjRhjwu1ekhHOC+2g) |
SentinelOne | Static AI - Suspicious PE |
Webroot | W32.Trojan.Dridex |
AVG | Win32:TrojanX-gen [Trj] |