ss25.exe| Category | Machine | Started | Completed |
|---|---|---|---|
| FILE | s1_win7_x6401 | March 8, 2023, 11:02 a.m. | March 8, 2023, 11:09 a.m. |
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| No hosts contacted. | ||
| IP Address | Status | Action |
|---|---|---|
| No hosts contacted. | ||
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
| pdb_path | notepad.pdb |
| resource name | MUI |
| section | {u'size_of_data': u'0x00019c00', u'virtual_address': u'0x0001f000', u'entropy': 7.370270431160758, u'name': u'.rsrc', u'virtual_size': u'0x00019af0'} | entropy | 7.37027043116 | description | A section with a high entropy has been found | |||||||||
| entropy | 0.486997635934 | description | Overall entropy of this PE file is high | |||||||||||
| Elastic | malicious (moderate confidence) |
| BitDefender | Trojan.GenericKD.65826955 |
| APEX | Malicious |
| Avast | FileRepMalware [Misc] |
| Kaspersky | UDS:DangerousObject.Multi.Generic |
| MicroWorld-eScan | Trojan.GenericKD.65826955 |
| Emsisoft | Trojan.GenericKD.65826955 (B) |
| TrendMicro | Trojan.Win64.PRIVATELOADER.YXDCGZ |
| McAfee-GW-Edition | Artemis!Trojan |
| FireEye | Trojan.GenericKD.65826955 |
| GData | Trojan.GenericKD.65826955 |
| Microsoft | Trojan:Win32/Casdet!rfn |
| McAfee | Artemis!48F4F6461F03 |
| MAX | malware (ai score=81) |
| TrendMicro-HouseCall | Trojan.Win64.PRIVATELOADER.YXDCGZ |
| AVG | FileRepMalware [Misc] |