ETH2.exe| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6402 | Oct. 14, 2021, 5:18 p.m. | Oct. 14, 2021, 5:22 p.m. |
-
ETH2.exe "C:\Users\test22\AppData\Local\Temp\ETH2.exe"
2488
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| No hosts contacted. | ||
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| section | {u'size_of_data': u'0x001e8800', u'virtual_address': u'0x00003000', u'entropy': 7.9998965258781025, u'name': u'.rdata', u'virtual_size': u'0x001e876e'} | entropy | 7.99989652588 | description | A section with a high entropy has been found | |||||||||
| entropy | 0.996430392657 | description | Overall entropy of this PE file is high | |||||||||||
| Lionic | Trojan.Win64.Donut.4!c |
| Elastic | malicious (high confidence) |
| MicroWorld-eScan | Trojan.GenericKDZ.78844 |
| FireEye | Generic.mg.13003cbfb6d2adfe |
| CAT-QuickHeal | Trojan.Win64 |
| Cylance | Unsafe |
| Sangfor | Trojan.Win64.Donut.ky |
| Alibaba | Trojan:Win64/Donut.cc786209 |
| Symantec | Trojan.Gen.MBT |
| ESET-NOD32 | a variant of Win64/Agent.AVO |
| Kaspersky | Trojan.Win64.Donut.bjn |
| BitDefender | Trojan.GenericKDZ.78844 |
| Ad-Aware | Trojan.GenericKDZ.78844 |
| McAfee-GW-Edition | Artemis |
| Emsisoft | Trojan.GenericKDZ.78844 (B) |
| Ikarus | Win32.Outbreak |
| eGambit | Unsafe.AI_Score_99% |
| Microsoft | Trojan:Win32/Wacatac.B!ml |
| GData | Trojan.GenericKDZ.78844 |
| Cynet | Malicious (score: 100) |
| McAfee | Artemis!13003CBFB6D2 |
| MAX | malware (ai score=83) |
| TrendMicro-HouseCall | TROJ_GEN.R002H0DJB21 |
| Fortinet | W64/Agent.AVO!tr |
| Cybereason | malicious.654b50 |