Contract.xll| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6402 | Sept. 16, 2021, 9:36 a.m. | Sept. 16, 2021, 9:36 a.m. |
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| No hosts contacted. | ||
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| section | _RDATA |
| resource name | ASSEMBLY |
| resource name | ASSEMBLY_LZMA |
| resource name | DNA |
| section | {u'size_of_data': u'0x000ae400', u'virtual_address': u'0x00079000', u'entropy': 7.870314852819, u'name': u'.rsrc', u'virtual_size': u'0x000ae340'} | entropy | 7.87031485282 | description | A section with a high entropy has been found | |||||||||
| entropy | 0.641509433962 | description | Overall entropy of this PE file is high | |||||||||||
| Lionic | Trojan.MSIL.Agentb.4!c |
| McAfee | Artemis!C38250C448E0 |
| Cylance | Unsafe |
| K7GW | Riskware ( 0040eff71 ) |
| K7AntiVirus | Riskware ( 0040eff71 ) |
| Kaspersky | HEUR:Trojan.MSIL.Agentb.gen |
| Avast | Win64:Malware-gen |
| Sophos | Mal/Generic-S |
| McAfee-GW-Edition | Artemis!Trojan |
| Jiangmin | Trojan.Inject.byyu |
| Avira | TR/Agent.bvsjm |
| Microsoft | Trojan:Win32/Tnega.VAM!MTB |
| ZoneAlarm | HEUR:Trojan.MSIL.Agentb.gen |
| Cynet | Malicious (score: 100) |
| Rising | Trojan.Kryptik!1.C8F9 (CLASSIC) |
| Fortinet | W32/Agentb!tr |
| AVG | Win64:Malware-gen |