Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | Dec. 14, 2023, 6:47 p.m. | Dec. 14, 2023, 6:52 p.m. |
-
fol2.exe "C:\Users\test22\AppData\Local\Temp\fol2.exe"
2556
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
section | {u'size_of_data': u'0x0001a000', u'virtual_address': u'0x00004000', u'entropy': 7.989082375519677, u'name': u'.rdata', u'virtual_size': u'0x00019ef0'} | entropy | 7.98908237552 | description | A section with a high entropy has been found | |||||||||
entropy | 0.28729281768 | description | Overall entropy of this PE file is high |
Bkav | W64.AIDetectMalware |
Elastic | malicious (high confidence) |
Cynet | Malicious (score: 100) |
Cylance | unsafe |
Sangfor | Trojan.Win32.Save.a |
BitDefender | Trojan.GenericKD.70769368 |
Cybereason | malicious.2653ae |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of Win64/Kryptik.DSQ |
APEX | Malicious |
Avast | Win64:Evo-gen [Trj] |
Kaspersky | Backdoor.Win64.Havoc.bmx |
Alibaba | Trojan:Win64/Kryptik.cc829ece |
Rising | Trojan.Kryptik!8.8 (TFE:5:AUiVxTm2GhT) |
Emsisoft | Trojan.GenericKD.70769368 (B) |
F-Secure | Trojan.TR/Kryptik.wswcx |
Trapmine | suspicious.low.ml.score |
FireEye | Generic.mg.9e3b880453d0f37e |
Sophos | Mal/Generic-S |
Ikarus | Trojan.Win64.Crypt |
Detected | |
Avira | TR/Kryptik.wswcx |
Antiy-AVL | Trojan/Win64.Kryptik |
Kingsoft | Win32.Troj.Unknown.a |
Gridinsoft | Trojan.Win64.Kryptik.sa |
Microsoft | Trojan:Win32/ScarletFlash.A |
ZoneAlarm | Backdoor.Win64.Havoc.bmx |
GData | Win64.Trojan.Agent.OTDV9M |
Varist | W64/ABRisk.XTHD-8440 |
DeepInstinct | MALICIOUS |
Malwarebytes | Trojan.Crypt |
Panda | Trj/Chgt.AD |
TrendMicro-HouseCall | TROJ_GEN.R002H0DLD23 |
Tencent | Win32.Trojan.FalseSign.Ztjl |
SentinelOne | Static AI - Malicious PE |
Fortinet | W64/Kryptik.DSQ!tr |
AVG | Win64:Evo-gen [Trj] |
CrowdStrike | win/malicious_confidence_100% (W) |